Vulnerability Database

291,049

Total vulnerabilities in the database

CVE-2005-4054

SQL injection vulnerability in index.php in PluggedOut Blog 1.9.5 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) categoryid, (2) entryid, (3) year, (4) month, and (5) day parameter.

  • Published: Dec 7, 2005
  • Updated: Apr 13, 2023
  • CVE: CVE-2005-4054
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Software From Fixed in
pluggedout / pluggedout_blog 1.9.5 1.9.5.x
pluggedout / pluggedout_blog - 1.9.4.x