SQL Injection Vulnerability in Orca Blog 1.3b and Earlier: Remote Code Execution via msg Parameter

SQL Injection Vulnerability in Orca Blog 1.3b and Earlier: Remote Code Execution via msg Parameter

CVE-2005-3941 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in blog.php in Orca Blog 1.3b and earlier allows remote attackers to execute arbitrary SQL commands via the msg parameter.

Learn more about our Web Application Penetration Testing UK.