| Max CVSS | 7.5 | Min CVSS | 6.5 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-2082 | 6.5 |
Direct static code injection vulnerability in admin/settings.php in MyBlog 0.9.8 and earlier allows remote authenticated admin users to inject arbitrary PHP code via the content parameter, which can be executed by accessing index.php. NOTE: a separa
|
16-10-2018 - 16:41 | 18-04-2007 - 03:19 | |
| CVE-2007-2081 | 7.5 |
MyBlog 0.9.8 and earlier allows remote attackers to bypass authentication requirements via the admin cookie parameter to certain admin files, as demonstrated by admin/settings.php.
|
16-10-2018 - 16:41 | 18-04-2007 - 03:19 |