Gorani Network » 6alblog : Security Vulnerabilities, CVEs, CVSS score >= 2
PHP remote file inclusion vulnerability in admin/index.php in 6ALBlog allows remote authenticated administrators to execute arbitrary PHP code via a URL in the pg parameter.
Max CVSS
6.5
EPSS Score
0.57%
Published
2007-06-27
Updated
2017-10-11
SQL injection vulnerability in member.php in 6ALBlog allows remote attackers to execute arbitrary SQL commands via the member parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Max CVSS
6.8
EPSS Score
0.17%
Published
2007-06-27
Updated
2012-10-31
SQL injection vulnerability in member.php in 6ALBlog allows remote attackers to execute arbitrary SQL commands via the newsid parameter.
Max CVSS
6.8
EPSS Score
0.95%
Published
2007-06-27
Updated
2017-10-11
3 vulnerabilities found