Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 13/07/2023 Updated: 21/07/2023

CVSS v3 Base Score: 4.8 | Impact Score: 2.7 | Exploitability Score: 1.7

VMScore: 0

Multiple cross-site scripting (XSS) vulnerabilities in Geeklog v2.2.2 allow malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Mail Settings[backend], Mail Settings[host], Mail Settings[port] and Mail Settings[auth] parameters of the /admin/configuration.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
geeklog geeklog 2.2.2

CWE-79 https://github.com/CrownZTX/reflectedxss1 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-37786

Vulnerability Summary

References

Vulmon Search

About

Products

Connect