Vulnerabilities > 8Pixel NET > Simple Blog > 2.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-12-01 | CVE-2006-6192 | Remote Security vulnerability in Simple Blog Unspecified scripts in the admin directory in 8pixel.net SimpleBlog 3.0 and earlier do not properly perform authentication, which allows remote attackers to add users and perform certain other unauthorized privileged actions. | 7.5 |
| 2006-09-06 | CVE-2006-4592 | SQL Injection vulnerability in 8Pixel.net SimpleBlog ID Parameter Incomplete blacklist vulnerability in default.asp in 8pixel.net Simple Blog 2.3 and earlier allows remote attackers to conduct SQL injection attacks via ">" characters in the id parameter, which are not filtered by the protection mechanism. | 7.5 |