2 matches found
CVE-2024-29474
OneBlog v2.3.4 was discovered to contain a stored cross-site scripting XSS vulnerability via the User Management module...
CVE-2024-29474
OneBlog v2.3.4 contains a stored cross-site scripting (XSS) vulnerability in the User Management module. The root cause is a lack of proper filtering/escaping of user-supplied data, enabling arbitrary web script or HTML execution. Affected version: OneBlog 2.3.4. Documents do not provide exploita...