Minibloggie

minibloggie

Vendor: Mywebland • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2008-6650 1Mywebland 1Minibloggie Apr 23, 2026 Apr 7, 2009 N/A· v4 N/A· v3 5.0 MEDIUM· v2 del.php in miniBloggie 1.0 allows remote attackers to delete arbitrary posts via a direct request with a modified post_id parameter, a different vulnerability than CVE-2008-4628.
CVE-2008-4628 1Mywebland 1Minibloggie Apr 23, 2026 Oct 21, 2008 N/A· v4 N/A· v3 7.5 HIGH· v2 SQL injection vulnerability in del.php in myWebland miniBloggie 1.0 allows remote attackers to execute arbitrary SQL commands via the post_id parameter.
CVE-2006-4163 1Mywebland 1Minibloggie Apr 16, 2026 Aug 16, 2006 N/A· v4 N/A· v3 7.5 HIGH· v2 PHP remote file inclusion vulnerability in cls_fast_template.php in myWebland miniBloggie 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the fname parameter. NOTE: another researcher...Show more PHP remote file inclusion vulnerability in cls_fast_template.php in myWebland miniBloggie 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the fname parameter. NOTE: another researcher was unable to find a way to execute code after including it via a URL. CVE analysis as of 20060816 was inconclusiveShow less
CVE-2006-0417 1Mywebland 1Minibloggie Apr 16, 2026 Jan 25, 2006 N/A· v4 N/A· v3 7.5 HIGH· v2 SQL injection vulnerability in login.php in miniBloggie 1.0 and earlier, when gpc_magic_quotes is disabled, allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username and (2)...Show more SQL injection vulnerability in login.php in miniBloggie 1.0 and earlier, when gpc_magic_quotes is disabled, allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username and (2) password parameters.Show less