Cross-site request forgery (CSRF) vulnerability in admin.php in myWebland myBloggie 2.1.6 allows remote attackers to perform edit actions as administrators. NOTE: this can be leveraged to execute SQL commands by also exploiting CVE-2007-1899.
Software | From | Fixed in |
---|---|---|
mywebland / mybloggie | 2.1.6 | 2.1.6.x |