Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web blog vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2005-0945
Cross-site scripting (XSS) vulnerability in ACS Blog 1.1.1 allows remote malicious users to inject arbitrary web script or HTML via onmouseover or onload events in (1) img, (2) link, or (3) mail tags.
Asp Press Acs Blog 1.1.1
1 EDB exploit
4.3
CVSSv2
CVE-2011-1670
Cross-site scripting (XSS) vulnerability in actions/add.php in InTerra Blog Machine 1.84, and possibly earlier versions, allows remote malicious users to inject arbitrary web script or HTML via the subject parameter to post_url/edit.
A.kulikov Interra Blog Machine 1.84
2 EDB exploits
4.3
CVSSv2
CVE-2006-1143
Cross-site scripting (XSS) vulnerability in FTPoed Blog Engine 1.1 allows remote malicious users to inject arbitrary web script or HTML via the comment_body parameter, as used by the comment field, when posting a comment.
Ftpoed Ftpoed Blog Engine 1.1
4.3
CVSSv2
CVE-2011-5029
Multiple cross-site scripting (XSS) vulnerabilities in Simple PHP Blog 0.7.0 and possibly earlier allow remote malicious users to inject arbitrary web script or HTML via the (1) entry parameter to delete.php or (2) category parameter to index.php.
Alexander Palmo Simple Php Blog
4.3
CVSSv2
CVE-2007-1248
Multiple cross-site scripting (XSS) vulnerabilities in built2go News Manager Blog 1.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) cid, (2) uid, and (3) nid parameters to (a) news.php, and the nid parameter to (b) rating.php.
Built2go News Manager Blog 1.0
2 EDB exploits
4.3
CVSSv2
CVE-2007-5072
Multiple cross-site scripting (XSS) vulnerabilities in Simple PHP Blog (SPHPBlog) prior to 0.5.1, when register_globals is enabled, allow remote malicious users to inject arbitrary web script or HTML via certain user_colors array parameters to certain user_style.php files under t...
Alexander Palmo Simple Php Blog
4.3
CVSSv2
CVE-2008-4802
Cross-site scripting (XSS) vulnerability in complete.php in Simple PHP Scripts blog 0.3 allows remote malicious users to inject arbitrary web script or HTML via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
Simple Php Scripts Blog 0.3
4.3
CVSSv2
CVE-2010-3025
Multiple cross-site scripting (XSS) vulnerabilities in Tomaz Muraus Open Blog 1.2.1, and possibly earlier, allow remote malicious users to inject arbitrary web script or HTML via the (1) excerpt parameter to application/modules/admin/controllers/posts.php, as reachable by admin/p...
Tomaz-muraus Open Blog 1.2.1
4.3
CVSSv2
CVE-2005-1135
Cross-site scripting (XSS) vulnerability in search.php for Simple PHP Blog (sphpBlog) 0.4.0 allows remote malicious users to inject arbitrary web script or HTML via the q parameter.
Alexander Palmo Simple Php Blog 0.4.0
1 EDB exploit
NA
CVE-2023-28621
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wishfulthemes Raise Mag, Wishfulthemes Wishful Blog themes allows Reflected XSS.This issue affects Raise Mag: from n/a up to and including 1.0.7; Wishful Blog: from n/a...
Wishfulthemes Raise Mag
Wishfulthemes Wishful Blog
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »