Michael Romedahl : Security Vulnerabilities, CVEs,
Cross-site scripting (XSS) vulnerability in search.asp in RI Blog 1.3 allows remote attackers to inject arbitrary web script or HTML via the q parameter.
Max CVSS
6.8
EPSS Score
1.18%
Published
2007-01-09
Updated
2018-10-16
Multiple SQL injection vulnerabilities in RI Blog 1.1 allow remote attackers to execute arbitrary SQL command via the (1) username or (2) password fields.
Max CVSS
7.5
EPSS Score
1.06%
Published
2006-04-25
Updated
2018-10-18
2 vulnerabilities found