Pixel Motion Pixel Motion Blog — known CVE vulnerabilities
Every CVE whose affected-product data names Pixel Motion Pixel Motion Blog, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2008-1866 — CVSS 9.0 (critical): admin/modif_config.php in Blog Pixel Motion (aka PixelMotion) does not require admin authentication, which allows remote authenticated…
CVE-2006-5085 — CVSS 7.5 (high): Static code injection vulnerability in config.php in Blog Pixel Motion 2.1.1 allows remote attackers to execute arbitrary PHP code via the…
CVE-2006-1426 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Pixel Motion Blog allow remote attackers to execute arbitrary SQL commands via the (1) date…
CVE-2008-1867 — CVSS 7.5 (high): SQL injection vulnerability in Blog Pixel Motion (aka Blog PixelMotion) allows remote attackers to execute arbitrary SQL commands via the…
CVE-2008-1868 — CVSS 7.5 (high): admin/sauvBase.php in Blog Pixel Motion (aka Blog PixelMotion) does not require authentication, which allows remote attackers to trigger a…
CVE-2006-5086 — CVSS 6.4 (medium): Blog Pixel Motion 2.1.1 allows remote attackers to change the username and password for the admin user via a direct request to…
CVE-2008-1986 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in liste_article.php in Blog Pixel Motion (aka PixelMotion) allows remote attackers to inject…