Vulnerabilities > Sphpblog > Sphpblog > 0.4.9
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-10-18 | CVE-2007-5572 | Cross-Site Request Forgery (CSRF) vulnerability in Sphpblog 0.4.9 Multiple cross-site request forgery (CSRF) vulnerabilities in Simple PHP Blog (SPHPBlog) 0.4.9 allow remote attackers to perform delete actions as administrators via (1) the block_id parameter to add_block.php or (2) the link_id parameter to add_link.php. | 4.3 |