my-blog project my-blog - vulnerabilities and exploits

(subscribe to this query)

NA

Cross Site Scripting vulnerability found in My-Blog allows malicious users to cause a denial of service via the Post function.

My-blog Project My-blog -

NA

A vulnerability, which was classified as problematic, was found in zhenfeng13 My-Blog. Affected is an unknown function of the file /admin/configurations/userInfo. The manipulation of the argument yourAvatar/yourName/yourEmail leads to cross-site request forgery. It is possible to...

My-blog Project My-blog -

NA

Cross site scripting (XSS) vulnerability in ZHENFENG13 My-Blog, allows malicious users to inject arbitrary web script or HTML via the "title" field in the "blog management" page due to the the default configuration not using MyBlogUtils.cleanString.

Zhenfeng13 My-blog Project Zhenfeng13 My-blog -

NA

Cross site scripting (XSS) vulnerability in ZHENFENG13 My-Blog, allows malicious users to inject arbitrary web script or HTML via editing an article in the "blog article" page due to the default configuration not utilizing MyBlogUtils.cleanString.

Zhenfeng13 My-blog Project Zhenfeng13 My-blog -

7.5

CVSSv2

Server Side Request Forgery (SSRF) exists in the Print My Blog plugin prior to 1.6.7 for WordPress via the site parameter.

Print My Blog Project Print My Blog

5.8

CVSSv2

The Print My Blog WordPress Plugin prior to 3.4.2 does not enforce nonce (CSRF) checks, which allows malicious users to make logged in administrators deactivate the Print My Blog plugin and delete all saved data for that plugin by tricking them to open a malicious link

Print My Blog Project Print My Blog

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook