Xweblog · Xweblog · CVE-2006-5023
**Name of the Vulnerable Software and Affected Versions**
xweblog versions 2.1 and earlier
**Description**
A SQL injection issue allows remote attackers to execute arbitrary SQL commands via the `kategori` parameter in the "kategori.asp" file.
**Recommendations**
For xweblog versions 2.1 and earlier, update to a version later than 2.1 to resolve the issue.