CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Phsdev: >> Phsblog >> 0.2 Security Vulnerabilities

CVE-2008-4072

Multiple SQL injection vulnerabilities in index.php in phsBlog 0.2 allow remote attackers to execute arbitrary SQL commands via (1) the sid parameter in a pickup action or (2) the sql_cid parameter, different vectors than CVE-2008-3588.

CVSS Score

7.5

EPSS Score

0.008

Published

2008-09-15

Page 1

Vulnerabilities

Vulnerable Software

Phsdev: >> Phsblog >> 0.2 Security Vulnerabilities

Products

Pricing

Contact Us