BlogPHP 'index.php' SQL Injection Vulnerability and Cross-Site Scripting Vulnerability

BlogPHP 'index.php' SQL Injection Vulnerability and Cross-Site Scripting Vulnerability

An attacker can exploit these issues via a browser. To exploit a cross-site scripting vulnerability, the attacker must entice a victim to follow a malicious URI.

The following example URIs and exploit code are available:

/data/vulnerabilities/exploits/27591.html
/data/vulnerabilities/exploits/27591.pl