SQL injection vulnerability in login.php in myBloggie 2.1.3-beta and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter.Referenceshttp://www.securityfocus.com/archive/1/419280/100/0/threadedhttp://www.securityfocus.com/bid/14739http://mywebland.com/forums/showtopic.php?t=399http://glide.stanford.edu/yichen/research/sec.pdfhttp://secunia.com/advisories/16699http://marc.info/?l=bugtraq&m=112607358831963&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/22162
