CVE-2006-0240

Multiple SQL injection vulnerabilities in Simple Blog 2.1 allow remote attackers to execute arbitrary SQL commands via the month parameter in an archives view operation and possibly certain other parameters in unspecified scripts.

Date published : 2006-01-17

http://www.securityfocus.com/bid/16243

http://www.securityfocus.com/archive/1/422102/100/0/threaded