| Titel | myWebland myBloggie 2.1.6, 2.1.4 Authorization Bypass |
|---|
| Beschreibung | A SQL injection flaw in the myBloggie login module allows crafted input to bypass the authentication query. Due to improper escaping and handling of backslashes and null bytes, an attacker may manipulate the SQL statement used for verifying user credentials, potentially gaining unauthorized access. |
|---|
| Quelle | ⚠️ https://github.com/ixpqxi/CVE_LIST/blob/master/myBloggie/authorization_bypass.md |
|---|
| Benutzer | ixpqxi (UID 83247) |
|---|
| Einreichung | 01.12.2025 03:46 (vor 7 Monaten) |
|---|
| Moderieren | 12.12.2025 12:10 (11 days later) |
|---|
| Status | Duplikat |
|---|
| VulDB Eintrag | 26245 [Mywebland myBloggie 2.1.1/2.1.2/2.1.3 Beta Login login.php Benutzername SQL Injection] |
|---|
| Punkte | 0 |
|---|