b2evolution
b2evolution is an advanced weblog tool i-e software allowing you to run your own blogs newsfeeds or even photo stream. b2evolution is a medium scale CMS centered around the Blog concept fully featured with multiple blogs content/presentation separation full user management full internationalization (i18n) workflow management... and extending towards features normally provided by Wikis Trac
Official Site:
http://b2evolution.net/Severity Summary:
Reference
Title
Severity
b2evolution Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
b2evolution Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
b2evolution Improper Neutralization of Special Elements used in a Command (Command Injection) Vulnerability
b2evolution Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
b2evolution Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
b2evolution Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
b2evolution Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability