Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in admin.php in myWebland myBloggie 2.1.6 allows remote attackers to perform edit actions as administrators. NOTE: this can be leveraged to execute SQL commands by also exploiting CVE-2007-1899.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
myWebland myBloggie 跨站请求伪造漏洞
Vulnerability Description
MyBloggie 是一款高级的基于php 和 Mysql的blog软件。 myWebland myBloggie 2.1.6的admin.php中存在跨站脚本攻击漏洞,远程攻击者可以像管理员那样执行编辑操作。注意:通过利用CVE-2007-1899,该漏洞可以扩大为执行SQL命令。
CVSS Information
N/A
Vulnerability Type
N/A