SQL Injection Vulnerabilities in Blog System 1.2

SQL Injection Vulnerabilities in Blog System 1.2

CVE-2005-4049 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Multiple SQL injection vulnerabilities in Blog System 1.2 allow remote attackers to execute arbitrary SQL commands via (1) the cat parameter in index.php and (2) the note parameter in blog.php.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.