Alexander Palmo: >> Simple Php Blog >> 0.3.7c Security Vulnerabilities
Directory traversal vulnerability in languages_cgi.php in Simple PHP Blog 0.5.1 and earlier allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the blog_language1 parameter.
CVSS Score
6.5
EPSS Score
0.019
Published
2009-12-24
Directory traversal vulnerability in Simple PHP Blog (SPHPBlog) 0.3.7c allows remote attackers to read or create arbitrary files via a .. (dot dot) in the entry parameter.
CVSS Score
5.0
EPSS Score
0.013
Published
2005-05-02