CVE-2025-7166 code-projects Responsive Blog Site single.php sql injection

A vulnerability was found in code-projects Responsive Blog Site 1.0. It has been classified as critical. This affects an unknown part of the file /single.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

Code-Projects Responsive Blog Site 注入漏洞

Code-Projects Responsive Blog Site is a responsive blog site from Code-Projects open source. Code-Projects Responsive Blog Site version 1.0 suffers from an injection vulnerability that stems from SQL injection due to incorrect manipulation of the parameter ID in the file /category.php...

Code-Projects Responsive Blog Site 注入漏洞

Code-Projects Responsive Blog Site is a responsive blog site from Code-Projects open source. An injection vulnerability exists in Code-Projects Responsive Blog Site version 1.0, which stems from an incorrect manipulation of the parameter ID in the file /single.php resulting in SQL injection...

PT-2025-28339 · Unknown · Code-Projects Responsive Blog

Name of the Vulnerable Software and Affected Versions: code-projects Responsive Blog Site version 1.0 Description: A critical issue was found in the code-projects Responsive Blog Site, affecting an unknown part of the file /single.php. The manipulation of the ID argument leads to SQL injection. I...

Blog 安全漏洞

Blog is a personal blogging system by the individual developers of Xuzijia in China. A security vulnerability exists in Blog 983bede and prior versions, which stems from an unconfigured SERVERNAME causing the password reset function to rely on the Host HTTP header, which could lead to an account...

CVE-2025-49274

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in awordpresslife Neom Blog neom-blog allows Reflected XSS.This issue affects Neom Blog: from n/a through = 0.0.9...

Friday Squid Blogging: How Squid Skin Distorts Light

New research. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy...

CVE-2025-49274

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in awordpresslife Neom Blog neom-blog allows Reflected XSS.This issue affects Neom Blog: from n/a through = 0.0.9...

CVE-2025-49274 WordPress Neom Blog theme <= 0.0.9 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in awplife Neom Blog allows Reflected XSS. This issue affects Neom Blog: from n/a through 0.0.9...

CVE-2025-49274

CVE-2025-49274 concerns the WordPress Neom Blog theme (awplife Neom Blog), with a Reflected XSS vulnerability due to improper input neutralization during web page generation. Affected versions are 0.0.0 through 0.0.9. Multiple external sources (e.g., CNVD, NVD, Red Hat, CVE List, PatchStack, PT-S...

CVE-2025-49274 WordPress Neom Blog theme <= 0.0.9 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in awordpresslife Neom Blog neom-blog allows Reflected XSS.This issue affects Neom Blog: from n/a through = 0.0.9...

PT-2025-27920 · Unknown · Awplife Neom Blog

Name of the Vulnerable Software and Affected Versions: awplife Neom Blog versions 0.0.0 through 0.0.9 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting, allowing Reflected XSS. Recommendations: For awplife Neom Blo...

WordPress plugin Neom Blog 跨站脚本漏洞

WordPress Neom Blog is a theme Theme for the WordPress platform, which is mainly used to create responsive websites, supporting the rapid construction of blogs, news, magazines, official corporate websites and other types of websites through a visual interface. WordPress Neom Blog suffers from a...

The New Toolkit: LLMs, Prompts, and Basic Tool Interaction

...

Linode Terraform Provider v3.0.0

...

Friday Squid Blogging: What to Do When You Find a Squid “Egg Mop”

Tips on what to do if you find a mop of squid eggs. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Blog moderation policy...

WordPress Neom Blog theme <= 0.0.9 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Le Ngoc Anh in WordPress Theme Neom Blog versions = 0.0.9...

WordPress Neom Blog Theme <= 0.0.9 is vulnerable to Cross Site Scripting (XSS)

Software Neom Blog Type Theme Vulnerable versions = 0.0.9 Fixed in 0.1.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2025-49274 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID da522fea2d13 Credits Le Ngoc Anh Required privilege...

📄 OpenCart 4.1.0.4 Cross Site Scripting

OpenCart versions 4.1.0.4 and below suffer from multiple persistent cross site scripting vulnerabilities. These findings exist in the blog editor and via SVG file uploads. CVE-2025-45892 – Stored XSS via Blog Editor Affected Versions: OpenCart 4.1.0.4 and below Vector: Stored XSS Attack Surface:...

CVE-2025-6347

A vulnerability was found in code-projects Responsive Blog 1.0/1.12.4/3.3.4. It has been declared as problematic. This vulnerability affects unknown code of the file /responsive/resblog/blogadmin/admin/pageViewMembers.php. The manipulation leads to cross site scripting. The attack can be initiate...