Release DateNov 03, 2011 |
Severityhigh |
ImpactSystem Compromise. |
DescriptionThis indicates a possible attempt to exploit a SQL Injection vulnerability in LBlogThe vulnerability may allow remote attackers to execute arbitrary SQL statements via a crafted "id" parameter. An attacker can leverage this issue to manipulate and disclose database contents, leading to system compromise. |
Affected ProductsLBlog 1.05 |
Recommended ActionsThe vendor has released version 2.0 to address this issue.http://www.lblog.dk |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2006-4284 |
