Lucene search
K

7 matches found

CNNVD
CNNVD
added 2024/03/28 12:0 a.m.4 views

Mblog 安全漏洞

langhsu mblog is langhsu open source an application system . Open source Java blog system , support for multi-user , support for switching themes . Mblog v.3.5.0 version has a security vulnerability . Attackers use the vulnerability through a specially crafted file on the theme management functio...

9.8CVSS7.5AI score0.01536EPSS
Exploits1References9
CNVD
CNVD
added 2021/05/06 12:0 a.m.2 views

Logic flaw vulnerability in the backend of the mayday blog system

mayday blog system is based on springboot, mybatis, ehcache, thymeleaf, bootstrap to do the blog system , support markdown editor Java blog system . mayday blog system backend there is a logic flaw vulnerability. Attackers can use the vulnerability to bypass authentication and obtain sensitive...

7.2AI score
Exploits0
CNVD
CNVD
added 2021/04/02 12:0 a.m.5 views

Mblog Cross-Site Scripting Vulnerability (CNVD-2021-26164)

Mblog is an open source Java blog system , support for multi-user , support for switching themes. Mblog 3.5 cross-site scripting vulnerability , an attacker can /settings/profile of the signature field to exploit the vulnerability to inject arbitrary Web script or HTML...

5.4CVSS6.2AI score0.00637EPSS
Exploits1References1
CNVD
CNVD
added 2021/04/02 12:0 a.m.10 views

Mblog Cross-Site Scripting Vulnerability (CNVD-2021-26119)

Mblog is an open source Java blog system , support for multi-user , support for switching themes. Mblog 3.5.0 suffers from a cross-site scripting vulnerability. Attackers can use the /post/editing post header field to inject arbitrary Web script or HTML...

5.4CVSS6.2AI score0.00603EPSS
Exploits1References1
CNVD
CNVD
added 2021/04/02 12:0 a.m.10 views

Mblog Cross-Site Scripting Vulnerability (CNVD-2021-26163)

Mblog is an open source Java blog system , support for multi-user , support for switching themes. Mblog 3.5 has a cross-site scripting vulnerability , the vulnerability stems from post editing via the post content field . An attacker can use this vulnerability to inject arbitrary Web script or HT...

5.4CVSS5.9AI score0.00637EPSS
Exploits1References1
CNVD
CNVD
added 2021/02/11 12:0 a.m.2 views

Mblog open source Java blog system has XSS vulnerability

Mblog open source Java blog system , support for multiple users , support for switching themes and so on. Mblog open source Java blog system has an XSS vulnerability that can be exploited by attackers to obtain sensitive information such as user cookies...

5.9AI score
Exploits0
CNVD
CNVD
added 2020/11/30 12:0 a.m.4 views

Mblog open source Java blog system has a logic flaw vulnerability

Mblog is a Java language development , support for mysql/h2 database , using spring-boot, jpa, shiro, bootstrap and other popular frameworks for the development of open source free blog system . Mblog open source Java blog system has a logic flaw vulnerability , an attacker can use the...

6.8AI score
Exploits0
Rows per page
Query Builder