Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:19 a.m.9 views

CVE-2024-35540

A stored cross-site scripting XSS vulnerability in Typecho v1.3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

9CVSS5.5AI score0.02671EPSS
Exploits4References1
Packet Storm
Packet Storm
added 2025/04/10 12:0 a.m.326 views

📄 Typecho 1.3.0 Cross Site Scripting

Typecho versions 1.3.0 and below suffer from a persistent cross site scripting vulnerability. // Exploit Title: Typecho = 1.3.0 Stored Cross-Site Scripting XSS // Google Dork: intext:"Powered by Typecho" inurl:/index.php // Date: 18/08/2024 // Exploit Author: Michele 'cyberaz0r' Di Bonaventura //...

9CVSS6.2AI score0.02671EPSS
Exploits4
Exploit DB
Exploit DB
added 2025/04/10 12:0 a.m.382 views

Typecho 1.3.0 - Stored Cross-Site Scripting (XSS)

Exploit Title: Typecho 1.3.0 - Stored Cross-Site Scripting XSS Google Dork: intext:"Powered by Typecho" inurl:/index.php Date: 18/08/2024 Exploit Author: Michele 'cyberaz0r' Di Bonaventura Vendor Homepage: https://typecho.org Software Link: https://github.com/typecho/typecho Version: 1.3.0 Tested...

9CVSS9.2AI score0.02671EPSS
Exploits4
Circl
Circl
added 2024/08/20 5:58 p.m.7 views

CVE-2024-35540

creationtimestamp| type| source ---|---|--- 2024-08-20 17:58:39+00:00| seen| https://t.me/cvedetector/3665 2024-09-10 04:24:15+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/8295 2025-04-11 21:02:20+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lmkw4brjyh2c...

9CVSS4.8AI score0.02671EPSS
Exploits4References3
NVD
NVD
added 2024/08/20 3:15 p.m.16 views

CVE-2024-35540

A stored cross-site scripting XSS vulnerability in Typecho v1.3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

9CVSS0.02671EPSS
Exploits4References1
OSV
OSV
added 2024/08/20 12:0 a.m.9 views

CVE-2024-35540

A stored cross-site scripting XSS vulnerability in Typecho v1.3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

7.6CVSS5.7AI score0.02671EPSS
Exploits4References3
Cvelist
Cvelist
added 2024/08/20 12:0 a.m.20 views

CVE-2024-35540

A stored cross-site scripting XSS vulnerability in Typecho v1.3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

0.02671EPSS
Exploits4References1
CVE
CVE
added 2024/08/20 12:0 a.m.58 views

CVE-2024-35540

Typecho 1.3.0 (and earlier) is affected by a stored XSS vulnerability in the post writing/preview flow (CVE-2024-35540). An attacker with post writing privileges can inject arbitrary JavaScript/HTML via a crafted payload, potentially compromising user sessions or data. Evidence across multiple so...

9CVSS5.6AI score0.02671EPSS
Exploits4References1Affected Software1
Rows per page
Query Builder