Vulnerabilities > Will Kraft

DATE	CVE	VULNERABILITY TITLE	RISK
2010-04-23	CVE-2009-4805	SQL Injection vulnerability in Will Kraft Ez-Blog Multiple SQL injection vulnerabilities in EZ-Blog Beta 1, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via (1) the storyid parameter to public/view.php or (2) the kill parameter to admin/remove.php. network will-kraft CWE-89	6.8
2010-04-23	CVE-2009-4801	Improper Authentication vulnerability in Will Kraft Ez-Blog EZ-Blog Beta 1 does not require authentication, which allows remote attackers to create or delete arbitrary posts via requests to PHP scripts. network low complexity will-kraft CWE-287	7.5
2009-05-12	CVE-2009-1626	SQL Injection vulnerability in Will Kraft Ez-Blog SQL injection vulnerability in public/specific.php in EZ-Blog before Beta 2 20090427, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the category parameter. network low complexity will-kraft CWE-89	7.5

Vulnerabilities > Will Kraft {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Will Kraft"}]}