Lucene search
+L

182 matches found

Cvelist
Cvelist
added 2025/08/13 8:2 p.m.16 views

CVE-2025-8927 mtons mblog Verification Code send_code excessive authentication

A vulnerability was determined in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality of the file /email/sendcode of the component Verification Code Handler. The manipulation of the argument email leads to improper restriction of excessive authentication attempts. The...

6.3CVSS0.00621EPSS
Exploits1References4
CVE
CVE
added 2025/08/13 8:2 p.m.30 views

CVE-2025-8927

Summary (CVE-2025-8927) : A vulnerability exists in mtons mblog up to version 3.5.0 affecting the Verification Code Handler, specifically the file /email/send_code. Malicious manipulation of the email parameter can bypass restrictions on excessive authentication attempts. The issue can be exploit...

6.3CVSS7.5AI score0.00621EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2025/08/13 12:0 a.m.6 views

mblog 安全漏洞

mblog is a blogging system by langhsu individual developer. A security vulnerability exists in mblog 3.5.0 and earlier versions, which stems from an improper restriction of authentication attempts due to misuse of the parameter email in the file /email/sendcode...

6.3CVSS4.9AI score0.00621EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/08/13 12:0 a.m.10 views

PT-2025-33077 · Mtons · Mtons Mblog

Name of the Vulnerable Software and Affected Versions: mtons mblog versions up to 3.5.0 Description: A flaw exists in mtons mblog up to version 3.5.0 within the Verification Code Handler component, specifically in the /email/send code file. Manipulation of the email argument results in an imprope...

6.3CVSS4.2AI score0.00621EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/23 7:46 a.m.16 views

CVE-2024-28713

An issue in Mblog Blog system v.3.5.0 allows an attacker to execute arbitrary code via a crafted file to the theme management feature...

9.8CVSS7.8AI score0.01338EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:36 a.m.7 views

CVE-2024-13199

A vulnerability classified as problematic was found in langhsu Mblog Blog System 3.5.0. Affected by this vulnerability is an unknown functionality of the file /search of the component Search Bar. The manipulation of the argument kw leads to cross site scripting. The attack can be launched remotel...

6.1CVSS6.1AI score0.00448EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:35 a.m.6 views

CVE-2024-13198

A vulnerability classified as problematic has been found in langhsu Mblog Blog System 3.5.0. Affected is an unknown function of the file /login. The manipulation leads to observable response discrepancy. It is possible to launch the attack remotely. The complexity of an attack is rather high. The...

6.3CVSS6.7AI score0.00668EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:10 p.m.7 views

CVE-2021-27280

OS Command injection vulnerability in mblog 3.5.0 allows attackers to execute arbitrary code via crafted theme when it gets selected...

7.8CVSS8.1AI score0.00973EPSS
Exploits1
NVD
NVD
added 2025/01/09 1:15 a.m.11 views

CVE-2024-13199

A vulnerability classified as problematic was found in langhsu Mblog Blog System 3.5.0. Affected by this vulnerability is an unknown functionality of the file /search of the component Search Bar. The manipulation of the argument kw leads to cross site scripting. The attack can be launched remotel...

6.1CVSS0.00448EPSS
Exploits1References4
OSV
OSV
added 2025/01/09 1:15 a.m.4 views

CVE-2024-13199

A vulnerability classified as problematic was found in langhsu Mblog Blog System 3.5.0. Affected by this vulnerability is an unknown functionality of the file /search of the component Search Bar. The manipulation of the argument kw leads to cross site scripting. The attack can be launched remotel...

6.1CVSS3.6AI score0.00448EPSS
Exploits1References4
OSV
OSV
added 2025/01/09 1:15 a.m.4 views

CVE-2024-13198

A vulnerability classified as problematic has been found in langhsu Mblog Blog System 3.5.0. Affected is an unknown function of the file /login. The manipulation leads to observable response discrepancy. It is possible to launch the attack remotely. The complexity of an attack is rather high. The...

6.3CVSS4.4AI score0.00668EPSS
Exploits1References4
NVD
NVD
added 2025/01/09 1:15 a.m.11 views

CVE-2024-13198

A vulnerability classified as problematic has been found in langhsu Mblog Blog System 3.5.0. Affected is an unknown function of the file /login. The manipulation leads to observable response discrepancy. It is possible to launch the attack remotely. The complexity of an attack is rather high. The...

6.3CVSS0.00668EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/01/09 12:31 a.m.7 views

CVE-2024-13199 langhsu Mblog Blog System Search Bar search cross site scripting

A vulnerability classified as problematic was found in langhsu Mblog Blog System 3.5.0. Affected by this vulnerability is an unknown functionality of the file /search of the component Search Bar. The manipulation of the argument kw leads to cross site scripting. The attack can be launched remotel...

5.3CVSS6AI score0.00448EPSS
Exploits1References4
CVE
CVE
added 2025/01/09 12:31 a.m.48 views

CVE-2024-13199

CVE-2024-13199 affects langhsu Mblog Blog System 3.5.0. The vulnerability resides in the /search endpoint of the Search Bar component, where manipulating the kw argument triggers a cross-site scripting (XSS) vulnerability. The issue can be exploited remotely, and public disclosure has occurred. M...

6.1CVSS3.7AI score0.00448EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/01/09 12:31 a.m.17 views

CVE-2024-13199 langhsu Mblog Blog System Search Bar search cross site scripting

A vulnerability classified as problematic was found in langhsu Mblog Blog System 3.5.0. Affected by this vulnerability is an unknown functionality of the file /search of the component Search Bar. The manipulation of the argument kw leads to cross site scripting. The attack can be launched remotel...

5.3CVSS0.00448EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/01/09 12:31 a.m.8 views

CVE-2024-13198 langhsu Mblog Blog System login observable response discrepancy

A vulnerability classified as problematic has been found in langhsu Mblog Blog System 3.5.0. Affected is an unknown function of the file /login. The manipulation leads to observable response discrepancy. It is possible to launch the attack remotely. The complexity of an attack is rather high. The...

6.3CVSS6.9AI score0.00668EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/01/09 12:31 a.m.21 views

CVE-2024-13198 langhsu Mblog Blog System login observable response discrepancy

A vulnerability classified as problematic has been found in langhsu Mblog Blog System 3.5.0. Affected is an unknown function of the file /login. The manipulation leads to observable response discrepancy. It is possible to launch the attack remotely. The complexity of an attack is rather high. The...

6.3CVSS0.00668EPSS
Exploits1References4
CVE
CVE
added 2025/01/09 12:31 a.m.48 views

CVE-2024-13198

CVE-2024-13198 affects langhsu Mblog Blog System 3.5.0. The vulnerability is in an unknown function of the file /login , causing an observable response discrepancy. It can be exploited remotely, with attack complexity described as high. Exploit has been disclosed publicly. Vendor response to disc...

6.3CVSS4.2AI score0.00668EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.5 views

mblog 安全漏洞

mblog is a blogging system by langhsu individual developer. A security vulnerability exists in mblog version 3.5.0, which stems from an unknown feature of file/login that causes significant response differences...

6.3CVSS4.8AI score0.00668EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/01/09 12:0 a.m.4 views

PT-2025-2056 · Unknown · Langhsu Mblog Blog System

Name of the Vulnerable Software and Affected Versions: langhsu Mblog Blog System version 3.5.0 Description: A problematic vulnerability has been found in the langhsu Mblog Blog System. The issue affects an unknown function of the file /login, leading to an observable response discrepancy. This ca...

6.3CVSS6.9AI score0.00668EPSS
Exploits1References7
Rows per page
Query Builder