CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2025/12/30 11:15 p.m.•1 views

CVE-2025-68503

Missing Authorization vulnerability in Crocoblock JetBlog jet-blog allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JetBlog: from n/a through = 2.4.7...

6.5CVSS5.9AI score0.00032EPSS

Exploits0References1

NVD•added 2025/12/29 10:15 p.m.•2 views

CVE-2025-68503

Missing Authorization vulnerability in Crocoblock JetBlog jet-blog allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JetBlog: from n/a through = 2.4.7...

6.5CVSS0.00032EPSS

Exploits0References1

Cvelist•added 2025/12/29 9:15 p.m.•24 views

CVE-2025-68503 WordPress JetBlog plugin <= 2.4.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in Crocoblock JetBlog jet-blog allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JetBlog: from n/a through = 2.4.7...

6.5CVSS0.00032EPSS

Exploits0References1

CVE•added 2025/12/29 9:15 p.m.•8 views

CVE-2025-68503

Technical details about CVE-2025-68503 (JetBlog missing authorization) are not publicly provided in the supplied documents. Monitor for updates and official advisories.

6.5CVSS5.9AI score0.00032EPSS

Exploits0References1

Positive Technologies•added 2025/12/29 12:0 a.m.•2 views

PT-2025-53795

Name of the Vulnerable Software and Affected Versions Crocoblock JetBlog versions through 2.4.7 Description An authorization issue exists in Crocoblock JetBlog, allowing exploitation of incorrectly configured access control security levels. This can lead to unauthorized access. Recommendations...

6.5CVSS6.6AI score0.00032EPSS

Exploits0References4

RedhatCVE•added 2025/10/23 3:14 p.m.•1 views

CVE-2025-49932

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetBlog jet-blog allows Stored XSS.This issue affects JetBlog: from n/a through = 2.4.4.1...

6.5CVSS5.9AI score0.00075EPSS

Exploits0References1

EUVD•added 2025/10/22 3:31 p.m.•1 views

EUVD-2025-35526

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in CrocoBlock JetBlog jet-blog allows Stored XSS.This issue affects JetBlog: from n/a through = 2.4.4.1...

5.5AI score0.00075EPSS

Exploits0References2

NVD•added 2025/10/22 3:15 p.m.•1 views

CVE-2025-49933

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Crocoblock JetBlog jet-blog allows Reflected XSS.This issue affects JetBlog: from n/a through = 2.4.4...

6.5CVSS0.00075EPSS

Exploits0References1

CVE•added 2025/10/22 2:32 p.m.•5 views

CVE-2025-49932

CVE-2025-49932 : A Stored Cross-Site Scripting (XSS) vulnerability affects CrocoBlock JetBlog (jet-blog) versions up to and including 2.4.4.1. The root cause is improper neutralization of input during web page generation, allowing injected scripts to be stored and later viewed by other users. Imp...

6.5CVSS5.9AI score0.00075EPSS

Exploits0References1

Positive Technologies•added 2025/10/22 12:0 a.m.•2 views

PT-2025-43196

Name of the Vulnerable Software and Affected Versions CrocoBlock JetBlog versions through 2.4.4.1 Description A flaw exists in CrocoBlock JetBlog that allows for Stored Cross-site Scripting XSS. This issue arises from improper neutralization of input during web page generation. An attacker could...

6.5CVSS6AI score0.00075EPSS

Exploits0References4

Positive Technologies•added 2025/10/22 12:0 a.m.•2 views

PT-2025-43197

Name of the Vulnerable Software and Affected Versions CrocoBlock JetBlog versions through 2.4.4 Description The software contains a flaw due to improper neutralization of input during web page generation, specifically a Reflected Cross-site Scripting XSS issue. This allows for the injection of...

6.5CVSS6.4AI score0.00075EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by