Vulnerabilities > BP Blog > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-06-05 | CVE-2008-2554 | SQL Injection vulnerability in BP Blog BP Blog 6.0 Multiple SQL injection vulnerabilities in BP Blog 6.0 allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to template_permalink.asp and (2) cat parameter to template_archives_cat.asp. | 7.5 |