Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dootzky oblog vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2009-4908
Multiple cross-site scripting (XSS) vulnerabilities in oBlog allow remote malicious users to inject arbitrary web script or HTML via the (1) commentName, (2) commentEmail, (3) commentWeb, or (4) commentText parameter to article.php; and allow remote authenticated administrators t...
Dootzky Oblog
1 EDB exploit
383
VMScore
CVE-2009-4903
Cross-site scripting (XSS) vulnerability in index.php in oBlog allows remote malicious users to inject arbitrary web script or HTML via the search parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Dootzky Oblog
445
VMScore
CVE-2009-4904
article.php in oBlog does not properly restrict comments, which allows remote malicious users to cause a denial of service (blog spam) via a comment=new action.
Dootzky Oblog
685
VMScore
CVE-2009-4907
Multiple cross-site request forgery (CSRF) vulnerabilities in oBlog allow remote malicious users to hijack the authentication of administrators for requests that (1) change the admin password, (2) force an admin logout, (3) change the visibility of posts, (4) remove links, and (5...
Dootzky Oblog
1 EDB exploit
605
VMScore
CVE-2009-4909
admin/index.php in oBlog allows remote malicious users to conduct brute-force password guessing attacks via HTTP requests.
Dootzky Oblog
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started