SQL injection vulnerability in comment.asp in Battle Blog 1.25 and earlier allows remote attackers to execute arbitrary SQL commands via the entry parameter.
Software | From | Fixed in |
---|---|---|
battleblog / battleblog | - | 1.25.x |
battleblog / battleblog | 1.05-build_1 | 1.05-build_1.x |
battleblog / battleblog | 1.0d-build_3 | 1.0d-build_3.x |
battleblog / battleblog | 1.0d-build_4 | 1.0d-build_4.x |
battleblog / battleblog | 1.0d-build_5 | 1.0d-build_5.x |
battleblog / battleblog | 1.0d-build_5a | 1.0d-build_5a.x |
battleblog / battleblog | 1.0d-build_6 | 1.0d-build_6.x |
battleblog / battleblog | 1.20-build_1 | 1.20-build_1.x |
battleblog / battleblog | 1.20-build_2 | 1.20-build_2.x |
battleblog / battleblog | 1.20-build_3 | 1.20-build_3.x |