CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Wheatblog: >> Wheatblog >> 1.0 Security Vulnerabilities

CVE-2006-5195

Multiple cross-site scripting (XSS) vulnerabilities in Wheatblog 1.0 and 1.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

CVSS Score

6.8

EPSS Score

0.008

Published

2006-10-10

CVE-2006-4198

PHP remote file inclusion vulnerability in includes/session.php in Wheatblog (wB) 1.1 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the wb_class_dir parameter.

CVSS Score

5.1

EPSS Score

0.074

Published

2006-08-17

Page 1

Vulnerabilities

Vulnerable Software

Wheatblog: >> Wheatblog >> 1.0 Security Vulnerabilities

Products

Pricing

Contact Us