CVE-2004-1570

Name of the Vulnerable Software and Affected Versions bBlog versions 0.7.2 through 0.7.3

Description The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the p parameter.

Recommendations For bBlog versions 0.7.2 and 0.7.3, avoid using the p parameter in affected API endpoints until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.