CyberSec.Space Logo
Back to CVE Browser

CVE-2007-5818

HIGH
7.6
CVSS Severity Score
EPSS Score0.1960%
EPSS Percentile10.47th
PublishedNov 5, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Cross-site request forgery (CSRF) vulnerability in blocks_edit_do.php in sBlog 0.7.3 Beta allows remote attackers to change arbitrary blocks as administrators.

Affected Platforms (CPE)

πŸ“¦
Sblog

Sblog

= 0.7.3_beta

References & Advisories

πŸ”— http://0x90.com.ar/Advisory/20071031.txt
πŸ”— http://secunia.com/advisories/27485
πŸ”— http://securityreason.com/securityalert/3341
πŸ”— http://www.securityfocus.com/archive/1/483108/100/0/threaded
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/38216
πŸ”— http://0x90.com.ar/Advisory/20071031.txt
πŸ”— http://secunia.com/advisories/27485
πŸ”— http://securityreason.com/securityalert/3341

Related Vulnerabilities

CVE-2006-218910.0

SQL injection vulnerability in search.php in Servous sBLOG 0.7.2 allows remote attackers to execute arbitrary SQL commands via the...

CVE-2007-18017.5

Directory traversal vulnerability in inc/lang.php in sBLOG 0.7.3 Beta allows remote attackers to include and execute arbitrary loc...

CVE-2006-01014.3

Multiple cross-site scripting (XSS) vulnerabilities in sBLOG 0.7.1 Beta 20051202 and earlier allow remote attackers to inject arbi...

CVE-2006-11354.3

Multiple cross-site scripting (XSS) vulnerabilities in sBlog 0.7.2 allow remote attackers to inject arbitrary web script or HTML v...