CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-2838

SQL injection vulnerability in login.php in myBloggie 2.1.3-beta and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://glide.stanford.edu/yichen/research/sec.pdf
http://marc.info/?l=bugtraq&m=112607358831963&w=2
http://mywebland.com/forums/showtopic.php?t=399
http://secunia.com/advisories/16699
http://www.securityfocus.com/archive/1/419280/100/0/threaded
http://www.securityfocus.com/bid/14739
https://exchange.xforce.ibmcloud.com/vulnerabilities/22162
http://glide.stanford.edu/yichen/research/sec.pdf
http://marc.info/?l=bugtraq&m=112607358831963&w=2
http://mywebland.com/forums/showtopic.php?t=399
http://secunia.com/advisories/16699
http://www.securityfocus.com/archive/1/419280/100/0/threaded
http://www.securityfocus.com/bid/14739
https://exchange.xforce.ibmcloud.com/vulnerabilities/22162

Products affected by CVE-2005-2838

Mywebland » Mybloggie » Version: 2.1.1

cpe:2.3:a:mywebland:mybloggie:2.1.1
Mywebland » Mybloggie » Version: 2.1.2

cpe:2.3:a:mywebland:mybloggie:2.1.2
Mywebland » Mybloggie » Version: 2.1.3_beta

cpe:2.3:a:mywebland:mybloggie:2.1.3_beta

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-2838

Products

Pricing

Contact Us