CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

E107coders: >> Macguru Blog Engine Plugin Security Vulnerabilities

CVE-2008-6438

SQL injection vulnerability in macgurublog_menu/macgurublog.php in the MacGuru BLOG Engine plugin 2.2 for e107 allows remote attackers to execute arbitrary SQL commands via the uid parameter, a different vector than CVE-2008-2455. NOTE: it was later reported that 2.1.4 is also affected.

CVSS Score

7.5

EPSS Score

0.036

Published

2009-03-06

Page 1

Vulnerabilities

Vulnerable Software

E107coders: >> Macguru Blog Engine Plugin Security Vulnerabilities

Products

Pricing

Contact Us