Lucene search
K

5 matches found

Patchstack
Patchstack
added 2026/06/23 4:39 p.m.5 views

WordPress 24liveblog – live blog tool plugin <= 2.2 - Missing Authorization to Authenticated (Author+) Settings Modification vulnerability

Missing Authorization to Authenticated Author+ Settings Modification vulnerability discovered by g0wthr in WordPress Plugin 24liveblog – live blog tool versions = 2.2...

4.3CVSS5.8AI score0.00215EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.8 views

CI4MS 跨站脚本漏洞

CI4MS is an open-source blog page management tool developed by Ci4MS. Versions of CI4MS prior to 31.0.0.0 contained a cross-site scripting vulnerability. This vulnerability stemmed from the failure to properly clean user-controlled input when users updated their profile names, which could lead to...

9.4CVSS5.7AI score0.00297EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.7 views

CI4MS 安全漏洞

CI4MS is an open-source blog page management tool developed by Ci4MS. Versions of CI4MS prior to 0.28.5.0 contained security vulnerabilities. These vulnerabilities stemmed from email enumeration issues in the authentication implementation. Unverified attackers could determine whether email...

5.3CVSS5.8AI score0.00349EPSS
Exploits0References2
exploitpack
exploitpack
added 2011/01/08 12:0 a.m.19 views

WordPress Plugin mingle forum 1.0.26 - Multiple Vulnerabilities

WordPress Plugin mingle forum 1.0.26 - Multiple Vulnerabilities -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 1. Advisory Information Title: Multiple Vulnerabilities in Mingle Forum WordPress Plugin Advisory URL: http://www.charleshooper.net/advisories/ Date Published: January 8th, 2011 Vendors...

0.3AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/05/20 3:0 p.m.2 views

a-blog cross-site scripting vulnerability

Overview a-blog, a server-based blog tool from appleple, Inc. contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. If session information from a cookie is leaked, an attacker could possibly conduct session hijacking. Solution None...

4.3CVSS6.2AI score0.01824EPSS
Exploits0References6
Rows per page
Query Builder