Vulnerabilities > Sphpblog > Sphpblog > 0.4.9

DATE CVE VULNERABILITY TITLE RISK
2007-10-18 CVE-2007-5572 Cross-Site Request Forgery (CSRF) vulnerability in Sphpblog 0.4.9
Multiple cross-site request forgery (CSRF) vulnerabilities in Simple PHP Blog (SPHPBlog) 0.4.9 allow remote attackers to perform delete actions as administrators via (1) the block_id parameter to add_block.php or (2) the link_id parameter to add_link.php.
network
sphpblog CWE-352
4.3
4.3