66 matches found
EUVD-2020-10875
Malware in sbrugna...
EUVD-2021-32740
Malicious code in bioql PyPI...
EUVD-2022-33450
Malicious code in bioql PyPI...
EUVD-2024-53602
Malicious code in bioql PyPI...
EUVD-2025-8858
Malicious code in bioql PyPI...
EUVD-2025-8867
Malicious code in bioql PyPI...
EUVD-2023-59090
Malicious code in bioql PyPI...
EUVD-2021-32739
Malicious code in bioql PyPI...
CVE-2023-6887
A vulnerability classified as critical has been found in saysky ForestBlog up to 20220630. This affects an unknown part of the file /admin/upload/img of the component Image Upload Handler. The manipulation of the argument filename leads to unrestricted upload. It is possible to initiate the attac...
CVE-2022-29020
ForestBlog through 2022-02-16 allows admin/profile/save userAvatar XSS during addition of a user avatar...
CVE-2021-46034
A problem was found in ForestBlog, as of 2021-12-29, there is a XSS vulnerability that can be injected through the nickname input box...
CVE-2020-18964
Cross Site Request Forgery CSRF Vulnerability in ForestBlog latest version via the website Management background, which could let a remote malicious gain privileges...
ForestBlog keywords parameter cross-site scripting vulnerability
ForestBlog is a blogging system. A cross-site scripting vulnerability exists in ForestBlog 20250321 and earlier versions, which stems from the lack of effective filtering and escaping of user-supplied data by the parameter keywords, and can be exploited by an attacker to execute arbitrary Web...
CVE-2025-3005
A vulnerability was found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this issue is some unknown functionality of the component Friend Link Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclos...
CVE-2025-3005
A vulnerability was found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this issue is some unknown functionality of the component Friend Link Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclos...
CVE-2025-3005
A vulnerability was found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this issue is some unknown functionality of the component Friend Link Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclos...
CVE-2025-3005
CVE-2025-3005 affects Sayski ForestBlog (up to 20250321) with a vulnerability in the Friend Link Handler that allows cross-site scripting (XSS) . The issue is exploitable remotely over the network; the exploit has been disclosed publicly. Multiple sources (NVD, Red Hat, CVE list, VulnDB/Vuln enri...
CVE-2025-3005 Sayski ForestBlog Friend Link cross site scripting
A vulnerability was found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this issue is some unknown functionality of the component Friend Link Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclos...
CVE-2025-3005 Sayski ForestBlog Friend Link cross site scripting
A vulnerability was found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this issue is some unknown functionality of the component Friend Link Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclos...
CVE-2025-3004
A vulnerability has been found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /search. The manipulation of the argument keywords leads to cross site scripting. The attack can be launched remotely. The explo...