CVE-2008-4436

Severity CVSS v4.0:
Pending analysis
Type:
CWE-89 SQL Injection
Publication date:
03/10/2008
Last modified:
09/04/2025

Description

SQL injection vulnerability in bblog_plugins/builtin.help.php in bBlog 0.7.6 allows remote attackers to execute arbitrary SQL commands via the mod parameter.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:bblog:wbblog:0.7.6:*:*:*:*:*:*:*