CVE-2008-2626

SQL injection vulnerability in comment.asp in Battle Blog 1.25 and earlier allows remote attackers to execute arbitrary SQL commands via the entry parameter.

Date published : 2008-06-09

http://www.securityfocus.com/bid/29507

http://www.davethewebguy.com/battleblog/article.asp?entry=24