Vulnerabilities > Aspindir > Xweblog > High

DATE CVE VULNERABILITY TITLE RISK
2011-10-05 CVE-2010-4856 SQL Injection vulnerability in Aspindir Xweblog 2.2
SQL injection vulnerability in arsiv.asp in xWeblog 2.2 allows remote attackers to execute arbitrary SQL commands via the tarih parameter.
network
low complexity
aspindir CWE-89
7.5
2011-10-05 CVE-2010-4855 SQL Injection vulnerability in Aspindir Xweblog 2.2
SQL injection vulnerability in oku.asp in xWeblog 2.2 allows remote attackers to execute arbitrary SQL commands via the makale_id parameter.
network
low complexity
aspindir CWE-89
7.5
2006-09-27 CVE-2006-5023 SQL Injection vulnerability in XWeblog Kategori.ASP
SQL injection vulnerability in kategori.asp in xweblog 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the kategori parameter.
network
low complexity
aspindir
7.5