Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flatpress flatpress vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-1104
Cross-site Scripting (XSS) - Stored in GitHub repository flatpressblog/flatpress before 1.3.
Flatpress Flatpress
NA
CVE-2023-1146
Cross-site Scripting (XSS) - Generic in GitHub repository flatpressblog/flatpress before 1.3.
Flatpress Flatpress
NA
CVE-2023-1148
Cross-site Scripting (XSS) - Stored in GitHub repository flatpressblog/flatpress before 1.3.
Flatpress Flatpress
NA
CVE-2022-4606
PHP Remote File Inclusion in GitHub repository flatpressblog/flatpress before 1.3.
Flatpress Flatpress
NA
CVE-2022-4821
A vulnerability classified as problematic was found in FlatPress. This vulnerability affects the function onupload of the file admin/panels/uploader/admin.uploader.php of the component XML File Handler/MD File Handler. The manipulation leads to cross site scripting. The attack ca...
Flatpress Flatpress -
NA
CVE-2022-40048
Flatpress v1.2.1 exists to contain a remote code execution (RCE) vulnerability in the Upload File function.
Flatpress Flatpress 1.2.1
312
VMScore
CVE-2022-24588
Flatpress v1.2.1 exists to contain a cross-site scripting (XSS) vulnerability in the Upload SVG File function.
Flatpress Flatpress 1.2.1
NA
CVE-2022-40047
Flatpress v1.2.1 exists to contain a reflected cross-site scripting (XSS) vulnerability via the page parameter at /flatpress/admin.php.
Flatpress Flatpress 1.2.1
435
VMScore
CVE-2009-4461
Multiple cross-site scripting (XSS) vulnerabilities in FlatPress 0.909 allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) contact.php, (2) login.php, and (3) search.php.
Flatpress Flatpress 0.909
1 EDB exploit
435
VMScore
CVE-2008-4120
Multiple cross-site scripting (XSS) vulnerabilities in FlatPress 0.804 allow remote malicious users to inject arbitrary web script or HTML via the (1) user or (2) pass parameter to login.php, or the (3) name parameter to contact.php.
Flatpress Flatpress 0.804
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »