CVE-2006-0240

Multiple SQL injection vulnerabilities in Simple Blog 2.1 allow remote attackers to execute arbitrary SQL commands via the month parameter in an archives view operation and possibly certain other parameters in unspecified scripts.
Configurations

Configuration 1 (hide)

cpe:2.3:a:8pixel.net:simple_blog:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2006-01-18 01:07

Updated : 2024-02-04 16:52


NVD link : CVE-2006-0240

Mitre link : CVE-2006-0240

CVE.ORG link : CVE-2006-0240


JSON object : View

Products Affected

8pixel.net

  • simple_blog
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')