MyBlog: PHP and MySQL Blog/CMS software suffers from SQL injection and cross site scripting vulnerabilities.