Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web blog vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-2229
Blog Torrent 0.92 and previous versions stores sensitive files under the web document root in the (1) data or (2) torrents directories with insufficient access control, which allows remote malicious users to obtain sensitive information such as account names and password hashes, ...
Blog Torrent Blog Torrent
1 EDB exploit
NA
CVE-2009-3594
Cross-site scripting (XSS) vulnerability in bpost.php in BLOB Blog System prior to 1.2 allows remote malicious users to inject arbitrary web script or HTML via the postid parameter.
Blob Blog System 1.1.1
Blob Blog System 1.0
Blob Blog System 1.1
NA
CVE-2008-0676
Cross-site scripting (XSS) vulnerability in search.php in A-Blog 2 allows remote malicious users to inject arbitrary web script or HTML via the words parameter.
A-blog A-blog 2
1 EDB exploit
NA
CVE-2006-1893
Cross-site scripting (XSS) vulnerability in print.php in ar-blog 5.2 allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Ar-blog Ar-blog 5.2
1 EDB exploit
NA
CVE-2005-0802
Cross-site scripting (XSS) vulnerability in search.asp in ACS Blog 0.8 up to and including 1.1b allows remote malicious users to execute arbitrary web script or HTML via the search parameter.
Asp Press Acs Blog 1.0
Asp Press Acs Blog 1.1b
Asp Press Acs Blog 0.8
Asp Press Acs Blog 0.9
1 EDB exploit
NA
CVE-2006-0333
Cross-site scripting (XSS) vulnerability in ar-blog 5.2 allows remote malicious users to inject arbitrary web script or HTML via the (1) month or (2) year parameter to index.php.
Ar-blog Ar-blog 5.2
NA
CVE-2008-0359
Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS 4.2.1b allow remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to (1) admin.php or (2) index.php in photo/.
Blog Cms Blog Cms 4.2.1 C
1 EDB exploit
NA
CVE-2006-2809
Multiple cross-site scripting (XSS) vulnerabilities in index.php in ar-blog 5.2 allow remote malicious users to inject arbitrary web script or HTML via the (1) count parameter, and possibly the (2) next, (3) Year_the_news, and (4) mo parameters. NOTE: the year and month vectors a...
Ar-blog Ar-blog 5.2
NA
CVE-2006-6020
Cross-site scripting (XSS) vulnerability in announce.php in Blog Torrent Preview 0.92 allows remote malicious users to inject arbitrary web script or HTML via the left parameter.
Blog Torrent Blog Torrent Preview 0.92
1 EDB exploit
6.1
CVSSv3
CVE-2021-26224
Cross-site scripting (XSS) vulnerability in SourceCodester Fantastic-Blog-CMS V 1.0 allows remote malicious users to inject arbitrary web script or HTML via the search field to search.php.
Fantastic Blog Project Fantastic Blog 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »