b2evolution is an advanced weblog tool i-e software allowing you to run your own blogs newsfeeds or even photo stream. b2evolution is a medium scale CMS centered around the Blog concept fully featured with multiple blogs content/presentation separation full user management full internationalization (i18n) workflow management... and extending towards features normally provided by Wikis Trac
b2evolution Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
Critical
b2evolution Improper Input Validation Vulnerability
Critical
b2evolution Use of Insufficiently Random Values Vulnerability
Critical
b2evolution Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Critical
b2evolution Improper Neutralization of Special Elements used in a Command (Command Injection) Vulnerability
High
b2evolution Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
High
b2evolution Credentials Management Errors Vulnerability
High
b2evolution Other Vulnerability
High
b2evolution Other Vulnerability
High
b2evolution Other Vulnerability
High
b2evolution Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
b2evolution Other Vulnerability
Medium
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
b2evolution Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
b2evolution Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
b2evolution URL Redirection to Untrusted Site (Open Redirect) Vulnerability
Medium
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
b2evolution Cross-Site Request Forgery (CSRF) Vulnerability
Medium