Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/03/18 2:12 p.m.17 views

CVE-2025-2340

A vulnerability was found in otale Tale Blog 2.0.5. It has been declared as problematic. This vulnerability affects the function saveOptions of the file /options/save of the component Site Settings. The manipulation of the argument Site Title leads to cross site scripting. The attack can be...

4.8CVSS6.2AI score0.00353EPSS
Exploits1References1
NVD
NVD
added 2025/03/16 2:15 p.m.10 views

CVE-2025-2340

A vulnerability was found in otale Tale Blog 2.0.5. It has been declared as problematic. This vulnerability affects the function saveOptions of the file /options/save of the component Site Settings. The manipulation of the argument Site Title leads to cross site scripting. The attack can be...

4.8CVSS0.00353EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/03/16 1:31 p.m.4 views

CVE-2025-2340 otale Tale Blog Site Settings save saveOptions cross site scripting

A vulnerability was found in otale Tale Blog 2.0.5. It has been declared as problematic. This vulnerability affects the function saveOptions of the file /options/save of the component Site Settings. The manipulation of the argument Site Title leads to cross site scripting. The attack can be...

4.8CVSS3.4AI score0.00353EPSS
Exploits1References4
CVE
CVE
added 2025/03/16 1:31 p.m.57 views

CVE-2025-2340

Summary (CVE-2025-2340): A cross-site scripting flaw affects Tale Blog 2.0.5, specifically the Site Settings component: the function /options/save.saveOptions accepts a manipulated Site Title, enabling remote XSS. The vulnerability’s root cause is input handling in the Site Title argument, leadin...

4.8CVSS6.1AI score0.00353EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/03/16 1:31 p.m.20 views

CVE-2025-2340 otale Tale Blog Site Settings save saveOptions cross site scripting

A vulnerability was found in otale Tale Blog 2.0.5. It has been declared as problematic. This vulnerability affects the function saveOptions of the file /options/save of the component Site Settings. The manipulation of the argument Site Title leads to cross site scripting. The attack can be...

4.8CVSS0.00353EPSS
Exploits1References4
Rows per page
Query Builder