Description
Multiple SQL injection vulnerabilities in NetArt Media Blog System 1.5 allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to index.php and the (2) note parameter to blog.php.
Exploits (1)
References (5)
Core 5
Core References
Exploit exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/11216
Exploit x_refsource_misc
http://packetstormsecurity.org/0512-exploits/blog12SQL.txt
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/55862
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/55818
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/37911
Scores
EPSS
0.0030
EPSS Percentile
53.6%
Details
CWE
CWE-89
Status
published
Products (1)
netartmedia/blog_system
1.5
Published
Jan 28, 2010
Tracked Since
Feb 18, 2026