|
Description
|
|
Multiple vulnerabilities have been identified in minimal-ablog, which could be exploited by attackers to compromise a vulnerable web server.
The first issue is caused by an input validation error in the "index.php" script when processing the "id" parameter, which could be exploited by malicious people to conduct SQL injection attacks and gain unauthorized access to a vulnerable application.
The second vulnerability is caused by input validation errors in the "admin/uploader.php" script when processing uploaded images, which could be exploited by authenticated users to upload malicious PHP scripts and execute arbitrary commands with the privileges of the web server.
|
