Every CVE whose affected-product data names Tuxplanet Bilboblog, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2008-3303 — CVSS 6.8 (medium): admin/login.php in BilboBlog 0.2.1, when register_globals is enabled, allows remote attackers to bypass authentication and obtain…
CVE-2008-3302 — CVSS 6.0 (medium): SQL injection vulnerability in admin/delete.php in BilboBlog 0.2.1, when magic_quotes_gpc is disabled, allows remote authenticated…
CVE-2008-3304 — CVSS 5.0 (medium): BilboBlog 0.2.1 allows remote attackers to obtain sensitive information via (1) an enable_cache=false query string to footer.php or (2) a…