CVE Vulnerabilities

CVE-2005-4054

Published: Dec 07, 2005 | Modified: Mar 08, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

SQL injection vulnerability in index.php in PluggedOut Blog 1.9.5 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) categoryid, (2) entryid, (3) year, (4) month, and (5) day parameter.

Affected Software

Name Vendor Start Version End Version
Pluggedout_blog Pluggedout * 1.9.4
Pluggedout_blog Pluggedout 1.9.5 1.9.5

References