CVE-2005-1946

Multiple SQL injection vulnerabilities in Invision Blog before 1.1.2 Final allow remote attackers to execute arbitrary SQL commands via the (1) eid parameter to an editentry, replyentry, or editcomment action, or (2) the mid parameter to an aboutme action.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:invision_power_services:invision_community_blog:1.0:*:*:*:*:*:*:*
cpe:2.3:a:invision_power_services:invision_community_blog:1.1:*:*:*:*:*:*:*

History

No history.

Information

Published : 2005-06-09 04:00

Updated : 2024-02-28 10:42


NVD link : CVE-2005-1946

Mitre link : CVE-2005-1946

CVE.ORG link : CVE-2005-1946


JSON object : View

Products Affected

invision_power_services

  • invision_community_blog