Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blog project vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-1937
A vulnerability, which was classified as problematic, was found in zhenfeng13 My-Blog. Affected is an unknown function of the file /admin/configurations/userInfo. The manipulation of the argument yourAvatar/yourName/yourEmail leads to cross-site request forgery. It is possible to...
My-blog Project My-blog -
6.1
CVSSv3
CVE-2023-27093
Cross Site Scripting vulnerability found in My-Blog allows malicious users to cause a denial of service via the Post function.
My-blog Project My-blog -
7.2
CVSSv3
CVE-2021-35290
File Upload vulnerability in balerocms-src 0.8.3 allows remote malicious users to run arbitrary code via rich text editor on /admin/main/mod-blog page.
Balero Cms Project Balero Cms 0.8.3
8.8
CVSSv3
CVE-2022-40035
File Upload Vulnerability found in Rawchen Blog-ssm v1.0 allowing malicious users to execute arbitrary commands and gain escalated privileges via the /uploadFileList component.
Blog-ssm Project Blog-ssm 1.0
6.5
CVSSv3
CVE-2022-40036
An issue exists in Rawchen blog-ssm v1.0 allows an malicious user to obtain sensitive user information by bypassing permission checks via the /adminGetUserList component.
Blog-ssm Project Blog-ssm 1.0
9.8
CVSSv3
CVE-2022-40037
An issue discovered in Rawchen blog-ssm v1.0 allows remote malicious user to escalate privileges and execute arbitrary commands via the component /upFile.
Javaweb Blog Project Javaweb Blog 1.0
5.4
CVSSv3
CVE-2022-40034
Cross-Site Scripting (XSS) vulnerability found in Rawchen blog-ssm v1.0 allows malicious users to execute arbitrary code via the 'notifyInfo' parameter.
Javaweb Blog Project Javaweb Blog 1.0
6.1
CVSSv3
CVE-2022-4400
A vulnerability was found in zbl1996 FS-Blog and classified as problematic. This issue affects some unknown processing of the component Title Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The associated identifier of this vulnerabi...
Fs-blog Project Fs-blog -
6.5
CVSSv3
CVE-2022-4397
A vulnerability was found in morontt zend-blog-number-2. It has been classified as problematic. Affected is an unknown function of the file application/forms/Comment.php of the component Comment Handler. The manipulation leads to cross-site request forgery. It is possible to laun...
Zend-blog-2 Project Zend-blog-2 -
9.6
CVSSv3
CVE-2022-4354
A vulnerability was found in LinZhaoguan pb-cms 2.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /blog/comment of the component Message Board. The manipulation leads to cross site scripting. The attack may be launched remotely. T...
Pb-cms Project Pb-cms 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »