Vulnerabilities > Brewblogger
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-08-06 | CVE-2008-6911 | SQL Injection vulnerability in Brewblogger 2.1.0.1 SQL injection vulnerability in the authenticateUser function in includes/authentication.inc.php in BrewBlogger (BB) 2.1.0.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the loginUsername parameter to includes/logincheck.inc.php. | 6.8 |