5 matches found
CVE-2025-5010 moonlightL hexo-boot Blog Backend index.html cross site scripting
A vulnerability classified as problematic has been found in moonlightL hexo-boot 4.3.0. This affects an unknown part of the file /admin/home/index.html of the component Blog Backend. The manipulation of the argument Description leads to cross site scripting. It is possible to initiate the attack...
CVE-2025-25460
A stored Cross-Site Scripting XSS vulnerability was identified in FlatPress 1.3.1 within the "Add Entry" feature. This vulnerability allows authenticated attackers to inject malicious JavaScript payloads into blog posts, which are executed when other users view the posts. The issue arises due to...
Cross site scripting
Yab Quarx through 2.4.3 is prone to multiple persistent cross-site scripting vulnerabilities: Blog Title, FAQ Question, Pages Title, Widgets Name, and Menus Name...
Bit Weaver v2.7 Local File Inclusion Vulnerability
Exploit for php platform in category web applications ================================================== Bit Weaver v2.7 Local File Inclusion Vulnerability ================================================== ------------------------------------------------------------------------...
Core FTP Server 1.0.343 Directory Traversal
============================================================================================================ //\ /\ /\ /\ /\ /\ ///\ //\ /\ /\///\ // \ // //\ \ / //\ \ / // //\ \ /\\ \ \ \ / / / / // \ \ // // // // \ // //\ \\ \ // /// \ \ / \ / // / // / / / / / \ \ / / / ...