SQL injection vulnerability in loudblog/ajax.php in LoudBlog 0.8.0a and earlier allows remote authenticated users to execute arbitrary SQL commands via the colpick parameter in a singleread action.
Max CVSS
6.5
EPSS Score
0.06%
Published
2009-02-06
Updated
2017-09-29
Eval injection vulnerability in loudblog/inc/parse_old.php in Loudblog 0.8.0 and earlier allows remote attackers to execute arbitrary PHP code via the template parameter.
Max CVSS
6.8
EPSS Score
0.92%
Published
2008-01-08
Updated
2017-10-19
2 vulnerabilities found