Security Advisory

CVE-2020-36972

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-28 17:35:11

Last updated 2026-03-05 01:27:14

Assigner VulnCheck

State PUBLISHED

Description

SmartBlog 2.0.1 contains a blind SQL injection vulnerability in the id_post parameter of the details controller that allows attackers to extract database information. Attackers can systematically test and retrieve database contents by injecting crafted SQL queries that compare character-by-character of database information.

← Browse all CVEs View on cve.org ↗