Vulnerabilities > Comdev > Comdev WEB Blogger
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-02-23 | CVE-2008-6250 | SQL Injection vulnerability in Comdev web Blogger 4.1 SQL injection vulnerability in Comdev Web Blogger 4.1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the arcmonth parameter to a blog page. | 6.8 |
| 2007-06-06 | CVE-2007-3084 | Remote Security vulnerability in Comdev web Blogger 4.1 PHP remote file inclusion vulnerability in sampleblogger.php in Comdev Web Blogger 4.1 allows remote attackers to execute arbitrary PHP code via a URL in the path[docroot] parameter, a different vector than CVE-2006-5441. | 7.5 |
| 2006-10-20 | CVE-2006-5441 | Remote Security vulnerability in Comdev web Blogger 4.1 PHP remote file inclusion vulnerability in adminfoot.php in Comdev Web Blogger 4.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the path[docroot] parameter. | 7.5 |