Mafia Moblog: Security Vulnerabilities
SQL injection vulnerability in big.php in Mafia Moblog 0.6M1 and earlier allows remote attackers to execute arbitrary SQL commands via the img parameter.
CVSS Score
7.5
EPSS Score
0.008
Published
2006-06-12
Mafia Moblog 0.6M1 and earlier allows remote attackers to obtain the installation path in an error message via a direct request to (1) big.php and (2) upgrade.php.
CVSS Score
5.0
EPSS Score
0.005
Published
2006-06-12