vendor:
Irokez Blog
by:
Unknown
N/A
CVSS
N/A
Multiple input-validation vulnerabilities
Unknown
CWE
Product Name: Irokez Blog
Affected Version From: 0.7.3.2
Affected Version To: Unknown
Patch Exists: NO
Related CWE: Unknown
CPE: Unknown
Platforms Tested:
Unknown
Input-validation vulnerabilities in Irokez Blog
These vulnerabilities include a cross-site scripting issue, an SQL-injection issue, and multiple remote file-include issues. Exploiting these vulnerabilities could lead to stealing authentication credentials, executing arbitrary code, compromising the application, accessing or modifying data, or exploiting underlying database vulnerabilities.
Mitigation:
Unknown