Filtered by vendor E107coders Subscriptions
Filtered by product Macguru Blog Engine Plugin Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2008-6438 2 E107, E107coders 2 E107, Macguru Blog Engine Plugin 2024-11-21 N/A
SQL injection vulnerability in macgurublog_menu/macgurublog.php in the MacGuru BLOG Engine plugin 2.2 for e107 allows remote attackers to execute arbitrary SQL commands via the uid parameter, a different vector than CVE-2008-2455. NOTE: it was later reported that 2.1.4 is also affected.