CVE-2009-2553

Publication date

2009-07-20 19:25:00

Family

mitre

State

PUBLISHED

Description

Multiple SQL injection vulnerabilities in comments.php in Super Simple Blog Script 2.5.4, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the entry parameter.