CVE-2008-2819

Description

SQL injection vulnerability in BlognPlus (BURO GUN +) 2.5.4 and earlier MySQL and PostgreSQL editions allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected products

• blognplus / blognplus2.5.4

References

• VENDOR_ADVISORYhttp://secunia.com/advisories/30642
• MISChttp://jvn.jp/jp/JVN14072646/index.html
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/43136
• MISChttp://www.securityfocus.com/bid/29764
• MISChttp://www.blogn.org/index.php?e=170