Vulnerabilities > Betaparticle > Betaparticle Blog > 2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-05-02 | CVE-2005-0854 | Remote vulnerability in Betaparticle Blog 2.0/3.0 betaparticle blog (bp blog), posisbly before version 4, allows remote attackers to bypass authentication and (1) upload files via a direct request to upload.asp or (2) delete files via a direct request to myFiles.asp. | 7.5 |
| 2005-05-02 | CVE-2005-0853 | Remote vulnerability in Betaparticle Blog 2.0/3.0 betaparticle blog (bp blog) stores the database under the web root, which allows remote attackers to obtain sensitive information via a direct request to (1) dbBlogMX.mdb for versions before 3.0, or (2) Blog.mdb for versions 3.0 and later. | 5.0 |