CVE-2008-6250

Name of the Vulnerable Software and Affected Versions: Comdev Web Blogger versions 4.1.3 and earlier

Description: A SQL injection issue allows remote attackers to execute arbitrary SQL commands via the arcmonth parameter to a blog page.

Recommendations: For Comdev Web Blogger versions 4.1.3 and earlier, update to a version later than 4.1.3 to resolve the issue.