Vulnerabilities > CVE-2005-1818 - SQL Injection vulnerability in NewLife Blogger

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

newlife-blogger

NVD

Published: 2005-06-01

Updated: 2008-09-05

Summary

Multiple SQL injection vulnerabilities in NewLife Blogger before 3.3.1 allow remote attackers to execute arbitrary SQL commands via unknown attack vectors.

Vulnerable Configurations

Part	Description	Count
Application	Newlife_Blogger Newlife Blogger Newlife Blogger 3.0 Newlife Blogger Newlife Blogger 3.0.1 Newlife Blogger Newlife Blogger 3.1 Newlife Blogger Newlife Blogger 3.2 Newlife Blogger Newlife Blogger 3.2.3 Newlife Blogger Newlife Blogger 3.3	6

References

http://secunia.com/advisories/15523
http://www.securityfocus.com/bid/13815
http://www.sevengraff.com/index.php