|
FrSIRT - Battle Blog "Entry" Parameter Remote SQL Injection Vulnerability 2008-06-04
|
|
|
|
Vuln: Bloggie Lite Cookie SQL Injection Vulnerability 2008-11-01
|
|
|
|
BEA WebLogic Server Multiple Vulnerabilities
|
|
|
|
CVE-2008-3302 (bilboblog)
|
|
|
|
CVE-2008-1867 (Pixel Motion Blog)
|
|
|
|
yblog SQL Injection and Cross-Site Scripting
|
|
|
|
CVE-2008-5205 (wellyblog)
|
|
|
|
CVE-2008-3588 (phsBlog)
|
|
|
|
CVE-2008-2581 (bea_product_suite, weblogic_server_component)
|
|
|
|
Insanely Simple Blog 0.5 (index) Remote SQL Injection Vulnerabilities Sat, 14 Jun 2008 09:33:34 +0200
|
|
|
|
BlogWorx "view.asp" SQL Injection Vulnerability
|
|
|
|
Xoops PopnupBlog Module "index.php" Cross-Site Scripting
|
|
|
|
VU#716387: Oracle Weblogic Apache connector vulnerable to buffer overflow
|
|
|
|
Joomla Component JooBlog 0.1.1 (PostID) SQL Injection Vulnerability Fri, 14 Nov 2008 01:00:57 +0100
|
|
|
|
CVE-2008-0442 (Weblog)
|
|
|
|
?Bad Blog? Can Give Facebook Users More Than a Bad Name Mon, 13 Oct 2008 19:44:59 +0000
|
|
|
|
CVE-2008-2579 (bea_product_suite, weblogic_server_component)
|
|
|
|
CVE-2008-0902 (WebLogic Server)
|
|
|
|
CVE-2008-2184 (smartblog)
|
|
|
|
LightBlog "username" Local File Inclusion
|
|
|
|
CVE-2008-4012 (weblogic_workshop)
|
|
|
|
LnBlog "plugin" Local File Inclusion
|
|
|
|
CVE-2008-0896 (WebLogic Portal)
|
|
|
|
CVE-2008-0895 (WebLogic Server)
|
|
|
|
Drupal User and BlogAPI Security Bypass Vulnerabilities
|
|
|
|
CVE-2008-2576 (bea_product_suite, weblogic_server)
|
|
|
|
CVE-2008-0865 (WebLogic Portal)
|
|
|
|
Bugtraq: iDefense Security Advisory 10.31.08: Oracle WebLogic Apache Connector
|
|
|
|
FrSIRT - JooBlog Component for Joomla "CategoryID" SQL Injection Vulnerability 2008-06-04
|
|
|
|
FrSIRT - BLOG Engine Plugin for e107 Remote SQL Injection Vulnerability 2008-09-02
|
|
|
|
CVE-2008-3304 (bilboblog)
|
|
|
|
CVE-2008-2971 (ciblog)
|
|
|
|
Flash Blog Sql Injection Sun, 08 Jun 2008 10:56:10 +0200
|
|
|
|
CVE-2008-1866 (Pixel Motion Blog)
|
|
|
|
CVE-2008-3305 (youtube_blog)
|
|
|
|
WellyBlog Open Source Blog Portal Cross Site Scripting Vulnerabilitiy Thu, 27 Nov 2008 00:47:16 +0100
|
|
|
|
CVE-2008-3885 (Blogn)
|
|
|
|
CVE-2008-0676 (A-Blog)
|
|
|
|
DCFM Blog 0.9.4 (comments) Remote SQL Injection Vulnerability Sat, 14 Jun 2008 09:34:36 +0200
|
|
|
|
CVE-2007-3650 (myBloggie)
|
|
|
|
e107 BLOG Engine Plugin "rid" SQL Injection
|
|
|
|
CVE-2008-0447 (PHP Weblog)
|
|
|
|
FrSIRT - NetArt Media Blog System "id" Remote SQL Injection Vulnerability 2008-11-24
|
|
|
|
Vuln: BlogMe PHP 'comments.php' SQL Injection Vulnerability 2008-05-03
|
|
|
|
CVE-2008-1915 (blogworx)
|
|
|
|
Hackers attack businesses, blogs and Web 2.0 sites, reveals Sophos Security Threat Report Wed, 23 Jul 2008 08:43:01 Z
|
|
|
|
CVE-2008-0559 (Nilsons Blogger)
|
|
|
|
CVE-2008-3301 (bilboblog)
|
|
|
|
Atom PhotoBlog "photoId" SQL Injection Vulnerability
|
|
|
|
CVE-2008-0870 (WebLogic Portal)
|
|
|
|
Comdev Web Blogger "arcmonth" SQL Injection Vulnerability
|
|
|
|
Joomla IDoBlog Component "userid" SQL Injection
|
|
|
|
CVE-2008-2627 (com_idoblog)
|
|
|
|
LightBlog Two Local File Inclusion Vulnerabilities
|
|
|
|
Bloggies Gives Out Malware Before Awards Tue, 11 Mar 2008 04:09:14 +0000
|
|
|
|
CVE-2008-4341 (myblog)
|
|
|
|
CVE-2008-0679 (BlogPHP)
|
|
|
|
Major blunder: virus mailed to Google Video blog subscribers 09 Nov 2006 17:35:00 +0300
|
|
|
|
artmedic weblog Multiple Vulnerabilities
|
|
|
|
BEA WebLogic Workshop NetUI Tags Information Disclosure Vulnerability
|
|
|
|
CVE-2008-3303 (bilboblog)
|
|
|
|
CVE-2008-0866 (WebLogic Workshop)
|
|
|
|
eggblog rss.php URL Cross-Site Scripting
|
|
|
|
CVE-2008-3257 (weblogic_server, WebLogic Server, apache_connector_in_weblogic_server)
|
|
|
|
CVE-2008-0139 (LoudBlog)
|
|
|
|
CVE-2008-1868 (Pixel Motion Blog)
|
|
|
|
BEA WebLogic Mobility Server Image Converter Unauthorized File Access 2007-12-13
|
|
|
|
myBloggie SQL Injection Vulnerabilities
|
|
|
|
CVE-2008-5051 (jooblog)
|
|
|
|
FrSIRT - Neat weblog "articleId" Parameter Remote SQL Injection Vulnerability 2008-04-01
|
|
|
|
CVE-2008-2185 (smartblog)
|
|
|
|
FrSIRT - NewLife Blogger "nlb3" Cookie Parameter SQL Injection Vulnerability 2008-10-13
|
|
|
|
CVE-2008-3186 (Chipmunk Blogger)
|
|
|
|
Vuln: eggBlog 'eggblogpassword' SQL Injection Vulnerability 2008-04-02
|
|
|
|
BlogMe PHP "id" SQL Injection Vulnerability
|
|
|
|
CVE-2008-3884 (Blogn)
|
|
|
|
Hundreds of Blogger Pages Harboring New Year?s Storm Links Thu, 27 Dec 2007 22:49:50 +0000
|
|
|
|
CVE-2008-3080 (myBloggie)
|
|
|
|
Blogn Cross-Site Scripting and Cross-Site Request Forgery
|
|
|
|
CVE-2008-2183 (smartblog)
|
|
|
|
CVE-2008-4802 (blog)
|
|
|
|
LifeType "newBlogUserName" Cross-Site Scripting
|
|
|
|
CVE-2008-0376 (Small Axe Weblog)
|
|
|
|
Vuln: SmartBlog 'index.php' SQL Injection Vulnerability 2008-05-03
|
|
|
|
CVE-2008-4072 (phsblog)
|
|
|
|
After Fake Blogs Come The Fake Forums Thu, 25 Sep 2008 10:10:34 +0000
|
|
|
|
CVE-2008-2580 (weblogic_server_component, bea_product_suite)
|
|
|
|
BlognPlus SQL Injection Vulnerabilities
|
|
|
|
CVE-2008-4628 (minibloggie)
|
|
|
|
CVE-2007-6577 (zBlog)
|
|
|
|
Blogger Battling Continuing Problems With ?Illicit? Blogs Thu, 10 Jan 2008 05:11:31 +0000
|
|
|
|
CVE-2008-2669 (yblog)
|
|
|
|
BEA WebLogic Workshop NetUI Pageflow Information Disclosure Vulnerability
|
|
|
|
Vuln: Quick and Dirty Blog Categories.PHP Local File Include Vulnerability 2007-11-06
|
|
|
|
CVE-2008-2629 (LifeType, pblog)
|
|
|
|
CVE-2008-4053 (popnupblog)
|
|
|
|
SMartBlog Multiple Vulnerabilities
|
|
|
|
CVE-2007-6582 (mBlog)
|
|
|
|
CVE-2008-2035 (Xoops, xoops cube, backpack, bmsurvey, newbb_fileup, news_fileup, popnupblog)
|
|
|
|
FrSIRT - YourFreeWorld Blog Blaster "id" Remote SQL Injection Vulnerability 2008-11-03
|
|
|
|
CVE-2008-2670 (isblog)
|
|
|
|
CVE-2008-0903 (WebLogic Express, WebLogic Server)
|
|
|
|
CVE-2008-4712 (lnblog)
|
|
|
|
Mic_Blog Multiple SQL Injection Vulnerabilities
|
|
|
|
CVE-2008-2823 (phpeasyblog)
|
|
|
|
FlashBlog Remote File Upload Vulnerability Sun, 08 Jun 2008 10:56:45 +0200
|
|
|
|
LoudBlog "colpick" SQL Injection Vulnerability
|
|
|
|
FrSIRT - vbLOGIX Tutorials "cat_id" Remote SQL Injection Vulnerability 2008-09-15
|
|
|
|
FrSIRT - miniBloggie "post_id" Parameter Remote SQL Injection Vulnerability 2008-10-20
|
|
|
|
Bea Weblogic Apache Connector Buffer Overflow Vulnerability
|
|
|
|
CVE-2008-2554 (BP Blog)
|
|
|
|
BLOG CMS 4.2.1.c (DIR_PLUGINS) Multiple Remote File Include 25-1-2008
|
|
|
|
sBlog Cross-Site Request Forgery
|
|
|
|
yBlog 0.2.2.2 Multiple Remote Vulnerabilities Fri, 13 Jun 2008 23:35:31 +0200
|
|
|
|
CVE-2008-3564 (dayfox_blog)
|
|
|
|
FrSIRT - Flosites Blog "cat" and "category" Remote SQL Injection Vulnerabilities 2008-11-17
|
|
|
|
CVE-2008-5004 (bloggie_lite)
|
|
|
|
FrSIRT - ParsBlogger "wr" Parameter Handling Remote SQL Injection Vulnerability 2008-11-27
|
|
|
|
CVE-2008-0863 (WebLogic Server, WebLogic Express)
|
|
|
|
CVE-2008-0898 (WebLogic Server)
|
|
|
|
CVE-2008-2626 (BattleBlog)
|
|
|
|
CVE-2008-2962 (MyBlog)
|
|
|
|
Bugtraq: WellyBlog Open Source Blog Portal Cross Site Scripting Vulnerabilitiy
|
|
|
|
Phishers Spoof ?The Paypal Blog? Tue, 29 Jul 2008 19:34:13 +0000
|
|
|
|
CVE-2008-2819 (blognplus)
|
|
|
|
Bugtraq: NewLife Blogger <= v3.0 / Insecure Cookie Handling & SQL Injection Vulnerability
|
|
|
|
Fake Blogs Lead To Fake Porn Thu, 18 Sep 2008 11:26:38 +0000
|
|
|
|
CVE-2008-0450 (Blog CMS)
|
|
|
|
FrSIRT - MyBlog Cookie Handling Unauthorized Access Vulnerability 2008-09-23
|
|
|
|
LightBlog Remote File Upload Vulnerability 6-2-2008
|
|
|
|
FrSIRT - BlogWorx "id" Parameter Handling Remote SQL Injection Vulnerability 2008-04-21
|
|
|
|
CVE-2008-2200 (maian_weblog)
|
|
|
|
CVE-2008-0678 (BlogPHP)
|
|
|
|
BEA WebLogic Server Multiple Authorizers Security Bypass
|
|
|
|
CVE-2008-2963 (MyBlog)
|
|
|
|
CVE-2008-0159 (eggblog)
|
|
|
|
Abused Blogs, Poisoned Searches, and Malicious Codecs Fri, 28 Dec 2007 04:24:50 +0000
|
|
|
|
CiBlog "id" SQL Injection Vulnerability
|
|
|
|
CVE-2007-1899 (myBloggie)
|
|
|
|
mBlog "page" Local File Inclusion Vulnerability
|
|
|
|
Joomla JooBlog Component "CategoryID" SQL Injection
|
|
|
|
BEA WebLogic Mobility Server Image Converter Security Bypass
|
|
|
|
CVE-2008-0798 (Artmedic Weblog)
|
|
|
|
sBlog 0.7.3 Beta Cross Site Request Forgery 5-11-2007
|
|
|
|
CVE-2008-2671 (dcfm_blog)
|
|
|
|
CVE-2008-2685 (BattleBlog)
|
|
|
|
CiBlog 3.1 Remote SQL Injection Fri, 04 Jul 2008 00:31:37 +0200
|
|
|
|
CVE-2008-2175 (blogme_php)
|
|
|
|
CVE-2008-2668 (yblog)
|
|
|
|
CVE-2008-0868 (WebLogic Portal)
|
|
|
|
nilson's blogger 0.11 remote file disclosure vulnerabilities 5-2-2008
|
|
|
|
BP Blog 6.0 (id) Remote Blind SQL Injection Vulnerability Sat, 07 Jun 2008 09:54:10 +0200
|
|
|
|
CVE-2007-6384 (WebLogic Mobility Server)
|
|
|
|
CVE-2008-4883 (blog_blaster_script)
|
|
|
|
CVE-2008-0864 (WebLogic Portal)
|
|
|
|
CVE-2008-0897 (WebLogic Server)
|
|
|
|
eggBlog Unspecified Cookie SQL Injection
|
|
|
|
FrSIRT - BEA Weblogic Apache Connector Remote Buffer Overflow Vulnerability 2008-07-22
|
|
|
|
CVE-2008-0901 (WebLogic Server)
|
|
|
|
Bugtraq: Microsoft SWI blog inaccuracies
|
|
|
|
CVE-2008-0899 (WebLogic Server)
|
|
|
|
CVE-2008-0900 (WebLogic Express, WebLogic Server)
|
|
|
|
CVE-2008-2356 (archangel_weblog)
|
|
|
|
CVE-2008-0677 (A-Blog)
|
|
|
|
CVE-2008-0632 (LightBlog)
|
|
|
|
Vuln: e107 BLOG Engine 'macgurublog.php' SQL Injection Vulnerability 2008-09-01
|
|
|
|
Minimal Ablog Multiple Vulnerabilities
|
|
|
|
CVE-2008-1986 (Pixel Motion Blog)
|
|
|
|
CVE-2008-0869 (WebLogic Workshop)
|
|
|
|
CVE-2008-1626 (eggblog)
|
|
|
|
CVE-2008-0840 (Light Blog)
|
|
|
|
Vuln: eggBlog Unspecifed Cookie SQL Injection Vulnerability 2008-03-28
|
|
|
|
CVE-2008-0765 (Artmedic Weblog)
|
|
|
|
BlogPHP Script Insertion and Cross-Site Scripting
|
|
|
|
CVE-2008-0446 (LulieBlog)
|
|
|
|
CVE-2008-1370 (Yap Blog)
|
|
|
|
CVE-2008-2524 (BlogPHP)
|
|
|
|
CVE-2008-3090 (blognplus)
|
|
|
|
CVE-2008-2582 (weblogic_server_component, bea_product_suite)
|
|
|
|
CVE-2008-4436 (wbblog)
|
|
|
