CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Bitdamaged: >> Geoblog >> mod_1.0 Security Vulnerabilities

CVE-2006-2177

Cross-site scripting (XSS) vulnerability in viewcat.php in geoBlog 1.0 allows remote attackers to inject arbitrary web script or HTML via the cat parameter.

CVSS Score

4.3

EPSS Score

0.033

Published

2006-05-04

CVE-2006-0249

SQL injection vulnerability in viewcat.php in BitDamaged geoBlog MOD_1.0 allows remote attackers to execute arbitrary SQL commands, then steal credentials and upload files, via the cat parameter ($tmpCategory variable).

CVSS Score

7.5

EPSS Score

0.019

Published

2006-01-18

Page 1

Vulnerabilities

Vulnerable Software

Bitdamaged: >> Geoblog >> mod_1.0 Security Vulnerabilities

Products

Pricing

Contact Us