Vulnerabilities (CVE)

Filtered by vendor E107coders Subscribe
Filtered by product Macguru Blog Engine Plugin
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-6438 2 E107, E107coders 2 E107, Macguru Blog Engine Plugin 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in macgurublog_menu/macgurublog.php in the MacGuru BLOG Engine plugin 2.2 for e107 allows remote attackers to execute arbitrary SQL commands via the uid parameter, a different vector than CVE-2008-2455. NOTE: it was later reported that 2.1.4 is also affected.