Vulnerabilities > CVE-2005-4546 - Unspecified vulnerability in Epic Designs Eggblog
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
search.php in eggblog 2.0 allows remote attackers to obtain the full path via an invalid q parameter, as used by the Keyword and Search fields, possibly due to an SQL injection vulnerability.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://pridels0.blogspot.com/2005/12/eggblog-vuln.html
- http://pridels0.blogspot.com/2005/12/eggblog-vuln.html
- http://secunia.com/advisories/18212
- http://secunia.com/advisories/18212
- http://www.osvdb.org/21908
- http://www.osvdb.org/21908
- http://www.securityfocus.com/bid/16056
- http://www.securityfocus.com/bid/16056
- http://www.vupen.com/english/advisories/2005/3072
- http://www.vupen.com/english/advisories/2005/3072
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23857
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23857