CVE-2009-4801 Information

Description

EZ-Blog Beta 1 does not require authentication which allows remote attackers to create or delete arbitrary posts via requests to PHP scripts.

Reference

http://www.exploit-db.com/exploits/8128 http://www.securityfocus.com/archive/1/501352/100/0/threaded