Vulnerabilities > Alexander Palmo > Simple PHP Blog
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-1135 | Cross-Site Scripting vulnerability in Alexander Palmo Simple PHP Blog 0.4.0 Cross-site scripting (XSS) vulnerability in search.php for Simple PHP Blog (sphpBlog) 0.4.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter. network alexander-palmo | 4.3 |
| 2005-05-02 | CVE-2005-0214 | Remote Directory Traversal vulnerability in Alexander Palmo Simple PHP Blog 0.3.7C Directory traversal vulnerability in Simple PHP Blog (SPHPBlog) 0.3.7c allows remote attackers to read or create arbitrary files via a .. | 5.0 |