CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Uapplication: >> Ublog Security Vulnerabilities

CVE-2007-0799

SQL injection vulnerability in badword.asp in Ublog Reload 1.0.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

CVSS Score

7.5

EPSS Score

0.005

Published

2007-02-06

CVE-2006-2246

Cross-site scripting (XSS) vulnerability in UBlog 1.6 Access Edition allows remote attackers to inject arbitrary web script or HTML via text fields when adding a blog entry.

CVSS Score

5.8

EPSS Score

0.006

Published

2006-05-09

CVE-2005-1426

Uapplication Ublog Reload stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for mdb-database/blog.mdb (aka mdb-database/blog.msb).

CVSS Score

5.0

EPSS Score

0.004

Published

2005-05-03

Page 1

Vulnerabilities

Vulnerable Software

Uapplication: >> Ublog Security Vulnerabilities

Products

Pricing

Contact Us