Lucene search

CVE-2023-1148

🗓️ 02 Mar 2023 03:09:15Reported by @huntrdevType

CVE-2023-1148 Cross-site Scripting (XSS) - Stored in GitHub repository flatpressblog/flatpress prior to 1.3

Reporter	Title	Published	Views	Family All 7
Prion	Cross site scripting	2 Mar 202303:15	–	prion
OSV	CVE-2023-1148	2 Mar 202303:15	–	osv
Vulnrichment	CVE-2023-1148 Cross-site Scripting (XSS) - Stored in flatpressblog/flatpress	2 Mar 202300:00	–	vulnrichment
Cvelist	CVE-2023-1148 Cross-site Scripting (XSS) - Stored in flatpressblog/flatpress	2 Mar 202300:00	–	cvelist
Huntr	Stored XSS via title, subtitle, footer and post title and content	26 Dec 202219:12	–	huntr
NVD	CVE-2023-1148	2 Mar 202303:15	–	nvd
OpenVAS	FlatPress < 1.3 Multiple Vulnerabilities	2 Mar 202300:00	–	openvas

Nvd

Node

flatpress flatpressRange<1.3

[
  {
    "vendor": "flatpressblog",
    "product": "flatpressblog/flatpress",
    "versions": [
      {
        "version": "unspecified",
        "lessThan": "1.3",
        "status": "affected",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
huntr	www.huntr.dev/bounties/f0cc2c4b-fdf9-483b-9a83-4e0dfeb4dac7
github	www.github.com/flatpressblog/flatpress/commit/3a32aad0dec5df24c6576d7567d4f2eadbfc75de

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

02 Mar 2023 03:15Current

5.1Medium risk

Vulners AI Score5.1

CVSS34.8 - 6.5

EPSS0.00054

SSVC

CWE-79