CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Bluecms Project: >> Bluecms >> 1.6 Security Vulnerabilities

CVE-2018-16432

BlueCMS 1.6 allows SQL Injection via the user_name parameter to uploads/user.php?act=index_login.

CVSS Score

9.8

EPSS Score

0.003

Published

2018-09-04

CVE-2010-4897

SQL injection vulnerability in comment.php in BlueCMS 1.6 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For HTTP header in a send action.

CVSS Score

7.5

EPSS Score

0.004

Published

2011-10-08

Page 2

Vulnerabilities

Vulnerable Software

Bluecms Project: >> Bluecms >> 1.6 Security Vulnerabilities

Products

Pricing

Contact Us