CVE-2005-4546

Name of the Vulnerable Software and Affected Versions eggblog version 2.0

Description The issue allows remote attackers to obtain the full path via an invalid q parameter, possibly due to an SQL injection vulnerability, as used by the Keyword and Search fields in the search.php file.

Recommendations For eggblog version 2.0, consider restricting access to the search.php file or validating the q parameter to prevent SQL injection attacks until a patch is available. As a temporary workaround, avoid using the Keyword and Search fields with invalid input.