Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flatpress vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-1146
Cross-site Scripting (XSS) - Generic in GitHub repository flatpressblog/flatpress before 1.3.
Flatpress Flatpress
5.4
CVSSv3
CVE-2023-1147
Cross-site Scripting (XSS) - Stored in GitHub repository flatpressblog/flatpress before 1.3.
Flatpress Flatpress
4.8
CVSSv3
CVE-2023-1148
Cross-site Scripting (XSS) - Stored in GitHub repository flatpressblog/flatpress before 1.3.
Flatpress Flatpress
6.1
CVSSv3
CVE-2022-4755
A vulnerability was found in FlatPress and classified as problematic. This issue affects the function main of the file fp-plugins/mediamanager/panels/panel.mediamanager.file.php of the component Media Manager Plugin. The manipulation of the argument mm-newgallery-name leads to cr...
Flatpress Flatpress -
9.8
CVSSv3
CVE-2023-0947
Path Traversal in GitHub repository flatpressblog/flatpress before 1.3.
Flatpress Flatpress
4.8
CVSSv3
CVE-2020-35241
FlatPress 1.0.3 is affected by cross-site scripting (XSS) in the Blog Content component. This vulnerability can allow an malicious user to inject the XSS payload in Blog content via the admin panel. Each time any user will go to that blog page, the XSS triggers and the attacker c...
Flatpress Flatpress 1.0.3
NA
CVE-2008-4120
Multiple cross-site scripting (XSS) vulnerabilities in FlatPress 0.804 allow remote malicious users to inject arbitrary web script or HTML via the (1) user or (2) pass parameter to login.php, or the (3) name parameter to contact.php.
Flatpress Flatpress 0.804
1 EDB exploit
5.4
CVSSv3
CVE-2022-24588
Flatpress v1.2.1 exists to contain a cross-site scripting (XSS) vulnerability in the Upload SVG File function.
Flatpress Flatpress 1.2.1
NA
CVE-2014-100036
Cross-site scripting (XSS) vulnerability in FlatPress 1.0.2 allows remote malicious users to inject arbitrary web script or HTML via the content parameter to the default URI.
Flatpress Flatpress 1.0.2
5.4
CVSSv3
CVE-2022-40047
Flatpress v1.2.1 exists to contain a reflected cross-site scripting (XSS) vulnerability via the page parameter at /flatpress/admin.php.
Flatpress Flatpress 1.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »