Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2025/06/03 9:9 p.m.7 views

CVE-2025-5407

A vulnerability has been found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /registerscript.php. The manipulation of the argument fullname leads to cross site scriptin...

4.8CVSS5.9AI score0.00276EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/06/01 9:0 p.m.6 views

CVE-2025-5407 chaitak-gorai Blogbook register_script.php cross site scripting

A vulnerability has been found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /registerscript.php. The manipulation of the argument fullname leads to cross site scriptin...

4.8CVSS3.3AI score0.00276EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/06/01 9:0 p.m.17 views

CVE-2025-5407 chaitak-gorai Blogbook register_script.php cross site scripting

A vulnerability has been found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /registerscript.php. The manipulation of the argument fullname leads to cross site scriptin...

4.8CVSS0.00276EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/06/01 6:31 p.m.6 views

CVE-2025-5406 chaitak-gorai Blogbook posts.php unrestricted upload

A vulnerability, which was classified as critical, was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. Affected is an unknown function of the file /admin/posts.php?source=addpost. The manipulation of the argument image leads to unrestricted upload. It is possible t...

6.5CVSS6.4AI score0.00385EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/06/01 6:31 p.m.17 views

CVE-2025-5406 chaitak-gorai Blogbook posts.php unrestricted upload

A vulnerability, which was classified as critical, was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. Affected is an unknown function of the file /admin/posts.php?source=addpost. The manipulation of the argument image leads to unrestricted upload. It is possible t...

6.5CVSS0.00385EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/06/01 6:0 p.m.14 views

CVE-2025-5405 chaitak-gorai Blogbook post.php cross site scripting

A vulnerability, which was classified as problematic, has been found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. This issue affects some unknown processing of the file /post.php. The manipulation of the argument commentauthor/commentemail/commentcontent leads to cros...

5.1CVSS0.00278EPSS
Exploits1References4
NVD
NVD
added 2025/06/01 5:15 p.m.10 views

CVE-2025-5404

A vulnerability classified as problematic was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. This vulnerability affects unknown code of the file /search.php of the component GET Parameter Handler. The manipulation of the argument Search leads to denial of service...

7.5CVSS0.00698EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/06/01 4:31 p.m.5 views

CVE-2025-5404 chaitak-gorai Blogbook GET Parameter search.php denial of service

A vulnerability classified as problematic was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. This vulnerability affects unknown code of the file /search.php of the component GET Parameter Handler. The manipulation of the argument Search leads to denial of service...

5.3CVSS4.8AI score0.00698EPSS
Exploits1References4
CVE
CVE
added 2025/06/01 4:31 p.m.53 views

CVE-2025-5404

CVE-2025-5404 affects chaitak-gorai Blogbook, specifically the GET Parameter Handler in /search.php where manipulating the Search argument leads to a denial of service. The initial and multiple accompanying sources (NVD, Red Hat, CVE List, Vulners enrichments) identify this as a publicly disclose...

7.5CVSS4.8AI score0.00698EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/06/01 2:0 p.m.37 views

CVE-2025-5402 chaitak-gorai Blogbook GET Parameter edit_post.php sql injection

A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/includes/editpost.php of the component GET Parameter Handler. The manipulation of the argument...

7.5CVSS0.00476EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/06/01 2:0 p.m.11 views

CVE-2025-5402 chaitak-gorai Blogbook GET Parameter edit_post.php sql injection

A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/includes/editpost.php of the component GET Parameter Handler. The manipulation of the argument...

7.5CVSS7.4AI score0.00476EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/06/01 1:0 p.m.18 views

CVE-2025-5401 chaitak-gorai Blogbook GET Parameter post.php sql injection

A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /post.php of the component GET Parameter Handler. The manipulation of the argument pid leads...

7.5CVSS0.00476EPSS
Exploits1References4
CVE
CVE
added 2025/06/01 8:31 a.m.59 views

CVE-2025-5400

CVE-2025-5400 affects the Blogbook product by Chaitak-Gorai, in the file /user.php (GET Parameter Handler). The vulnerability arises from unsafely handling the parameter u_id , enabling remote SQL injection. It is described as critical with potential high impact on confidentiality, integrity, and...

9.8CVSS7.4AI score0.0047EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/01 8:31 a.m.6 views

CVE-2025-5400 chaitak-gorai Blogbook GET Parameter user.php sql injection

A vulnerability was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. It has been classified as critical. Affected is an unknown function of the file /user.php of the component GET Parameter Handler. The manipulation of the argument uid leads to sql injection. It is...

7.5CVSS7.4AI score0.0047EPSS
Exploits1References4
Rows per page
Query Builder