Vulnerabilities > Lblog

DATE	CVE	VULNERABILITY TITLE	RISK
2007-01-05	CVE-2007-0077	Information Disclosure vulnerability in LBlog lblog stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for a certain file in admin/db/newFolder/. network low complexity lblog	5.0
2006-08-22	CVE-2006-4284	SQL Injection vulnerability in Lblog 1.05 SQL injection vulnerability in comments.asp in LBlog 1.05 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. network low complexity lblog	7.5

Vulnerabilities > Lblog {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Lblog"}]}