Test ID:	1.3.6.1.4.1.25623.1.0.60124
Category:	CGI abuses
Title:	eggBlog <= 3.07 SQL injection
Summary:	NOSUMMARY
Description:	Description: The installed version of eggBlog according to the version number, is vulnerable to a SQL injection vulnerability as a result of improperly sanitized user data supplied in the 'id' parameter of the rss/posts.php script. Versions prior to 3.07 are known to be vulnerable. Solution : Upgrade to a later version. Risk factor : High CVSS Score: 6.4
Cross-Ref:	BugTraq ID: 18140 Common Vulnerability Exposure (CVE) ID: CVE-2006-2725 http://www.securityfocus.com/bid/18140 Bugtraq: 20060528 Advisory: Eggblog <= 3.x Multiple Remote Vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/435284/100/0/threaded Bugtraq: 20060529 RE: Advisory: Eggblog <= 3.x Multiple Remote Vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/435300/100/0/threaded http://www.nukedx.com/?getxpl=36 http://www.nukedx.com/?viewdoc=36 http://secunia.com/advisories/20352 http://www.vupen.com/english/advisories/2006/2030 XForce ISS Database: eggblog-posts-sql-injection(26832) https://exchange.xforce.ibmcloud.com/vulnerabilities/26832
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.