CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability has been found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /registerscript.php. The manipulation of the argument fullname leads to cross site scriptin...

4.8CVSS5.9AI score0.00145EPSS

Exploits1References1

RedhatCVE•added 2025/06/03 7:10 p.m.•4 views

CVE-2025-5406

A vulnerability, which was classified as critical, was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. Affected is an unknown function of the file /admin/posts.php?source=addpost. The manipulation of the argument image leads to unrestricted upload. It is possible t...

6.5CVSS6.8AI score0.0031EPSS

Exploits1References1

RedhatCVE•added 2025/06/03 6:16 p.m.•5 views

CVE-2025-5405

A vulnerability, which was classified as problematic, has been found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. This issue affects some unknown processing of the file /post.php. The manipulation of the argument commentauthor/commentemail/commentcontent leads to cros...

5.1CVSS6.1AI score0.0015EPSS

Exploits1References1

RedhatCVE•added 2025/06/03 5:19 p.m.•5 views

CVE-2025-5404

A vulnerability classified as problematic was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. This vulnerability affects unknown code of the file /search.php of the component GET Parameter Handler. The manipulation of the argument Search leads to denial of service...

5.3CVSS6.9AI score0.00747EPSS

Exploits1References1

RedhatCVE•added 2025/06/03 4:21 p.m.•6 views

CVE-2025-5403

A vulnerability classified as critical has been found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. This affects an unknown part of the file /admin/viewallposts.php of the component GET Parameter Handler. The manipulation of the argument postid leads to sql injection. ...

6.5CVSS7.1AI score0.00216EPSS

Exploits1References1

RedhatCVE•added 2025/06/03 2:22 p.m.•5 views

CVE-2025-5402

A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/includes/editpost.php of the component GET Parameter Handler. The manipulation of the argument...

7.5CVSS7.2AI score0.00223EPSS

Exploits1References1

RedhatCVE•added 2025/06/03 1:14 p.m.•2 views

CVE-2025-5401

A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /post.php of the component GET Parameter Handler. The manipulation of the argument pid leads...

7.5CVSS7.2AI score0.00223EPSS

Exploits1References1

RedhatCVE•added 2025/06/03 9:16 a.m.•2 views

CVE-2025-5400

A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been classified as critical. Affected is an unknown function of the file /user.php of the component GET Parameter Handler. The manipulation of the argument uid leads to sql injection. It is...

7.5CVSS7.2AI score0.00223EPSS

Exploits1References1

OSV•added 2025/06/01 9:15 p.m.•0 views

CVE-2025-5407

5.4CVSS3.6AI score0.00145EPSS

Exploits1References4

NVD•added 2025/06/01 9:15 p.m.•9 views

CVE-2025-5407

5.4CVSS0.00145EPSS

Exploits1References4

CVE•added 2025/06/01 9:0 p.m.•44 views

CVE-2025-5407

CVE-2025-5407 affects the chaitak-gorai Blogbook project, specifically the vulnerable function in the file /register_script.php where the fullname parameter can be manipulated to trigger a cross-site scripting (XSS) condition. The vulnerability is exploitable remotely, and information about affec...

5.4CVSS3.3AI score0.00145EPSS

Exploits1References4Affected Software1