4 matches found
CVE-2024-33209
FlatPress v1.3 is vulnerable to Cross Site Scripting XSS. An attacker can inject malicious JavaScript code into the "Add New Entry" section, which allows them to execute arbitrary code in the context of a victim's web browser...
PT-2024-25147 · Flatpress · Flatpress
Name of the Vulnerable Software and Affected Versions: FlatPress version 1.3 Description: The issue allows an attacker to inject malicious JavaScript code into the "Add New Entry" section, enabling them to execute arbitrary code in the context of a victim's web browser. This can lead to potential...
FlatPress 安全漏洞
FlatPress is a blog builder system based on Php without database support from the FlatPress community. A security vulnerability exists in FlatPress v1.3. The vulnerability can be exploited to inject malicious JavaScript code into the "Add New Entry" section to execute arbitrary code in the victim...
Exploit for Cross-site Scripting in Flatpress
CVE-2024-33209 FlatPress 1.3. is vulnerable to Cross Site Scri...