Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:16 a.m.5 views

CVE-2025-1585

A vulnerability, which was classified as problematic, has been found in otale tale up to 2.0.5. This issue affects the function OptionsService of the file src/main/resources/templates/themes/default/partial/header.html. The manipulation of the argument logourl leads to cross site scripting. The...

5.4CVSS6.2AI score0.00335EPSS
Exploits1References1
Circl
Circl
added 2025/02/23 2:21 p.m.6 views

CVE-2025-1585

creationtimestamp| type| source ---|---|--- 2025-02-23 14:21:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5093 2025-02-23 16:27:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3liuatiiv3t2k 2025-02-23 17:38:06+00:00| seen|...

5.4CVSS5.2AI score0.00335EPSS
Exploits1References3
NVD
NVD
added 2025/02/23 2:15 p.m.11 views

CVE-2025-1585

A vulnerability, which was classified as problematic, has been found in otale tale up to 2.0.5. This issue affects the function OptionsService of the file src/main/resources/templates/themes/default/partial/header.html. The manipulation of the argument logourl leads to cross site scripting. The...

5.4CVSS0.00335EPSS
Exploits1References4
CVE
CVE
added 2025/02/23 2:0 p.m.50 views

CVE-2025-1585

Tale Blog (otale tale) up to version 2.0.5 is affected. The vulnerability resides in the OptionsService function (src/main/resources/templates/themes/default/partial/header.html) where manipulating the logo_url argument enables cross-site scripting. The issue can be exploited remotely and the pub...

5.4CVSS3.5AI score0.00335EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/23 2:0 p.m.4 views

CVE-2025-1585 otale header.html OptionsService cross site scripting

A vulnerability, which was classified as problematic, has been found in otale tale up to 2.0.5. This issue affects the function OptionsService of the file src/main/resources/templates/themes/default/partial/header.html. The manipulation of the argument logourl leads to cross site scripting. The...

4.8CVSS3.5AI score0.00335EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/02/23 2:0 p.m.17 views

CVE-2025-1585 otale header.html OptionsService cross site scripting

A vulnerability, which was classified as problematic, has been found in otale tale up to 2.0.5. This issue affects the function OptionsService of the file src/main/resources/templates/themes/default/partial/header.html. The manipulation of the argument logourl leads to cross site scripting. The...

4.8CVSS0.00335EPSS
Exploits1References4
Rows per page
Query Builder