Blog_project Blog
3 CVEs affecting Blog_project Blog. Latest disclosed: 2022-02-08. Critical: 2, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-14346 | Critical | 9.8 | 2017-09-12 | upload.php in tianchoy/blog through 2017-09-12 allows unrestricted file upload and PHP code execution by using the image/jpeg, image/pjpeg, image/png, or image… |
CVE-2017-14345 | Critical | 9.8 | 2017-09-12 | SQL Injection exists in tianchoy/blog through 2017-09-12 via the id parameter to view.php. |
CVE-2022-23626 | High | 8.5 | 2022-02-08 | m1k1o/blog is a lightweight self-hosted facebook-styled PHP blog. Errors from functions `imagecreatefrom*` and `image*` have not been checked properly. Althoug… |