Lucene search
K

182 matches found

NVD
NVD
added 2025/08/15 3:15 a.m.24 views

CVE-2025-9004

A vulnerability was found in mtons mblog up to 3.5.0. This issue affects some unknown processing of the file /settings/password. The manipulation leads to improper restriction of excessive authentication attempts. The attack may be initiated remotely. The complexity of an attack is rather high. T...

9.1CVSS0.00895EPSS
Exploits1References4
OSV
OSV
added 2025/08/15 3:15 a.m.6 views

CVE-2025-9004

A vulnerability was found in mtons mblog up to 3.5.0. This issue affects some unknown processing of the file /settings/password. The manipulation leads to improper restriction of excessive authentication attempts. The attack may be initiated remotely. The complexity of an attack is rather high. T...

9.1CVSS4.7AI score0.00895EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/08/15 3:2 a.m.5 views

CVE-2025-9005 mtons mblog register information exposure

A vulnerability was determined in mtons mblog up to 3.5.0. Affected is an unknown function of the file /register. The manipulation leads to information exposure through error message. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is...

6.3CVSS6.8AI score0.00547EPSS
Exploits1References4
CVE
CVE
added 2025/08/15 3:2 a.m.22 views

CVE-2025-9005

The vulnerability CVE-2025-9005 affects mtons mblog up to version 3.5.0, where an unknown function in the /register endpoint can trigger information exposure via an error message. It can be exploited remotely; attack complexity is high and exploitation is not trivial. Public disclosure exists, wi...

6.3CVSS6.8AI score0.00547EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/08/15 3:2 a.m.13 views

CVE-2025-9005 mtons mblog register information exposure

A vulnerability was determined in mtons mblog up to 3.5.0. Affected is an unknown function of the file /register. The manipulation leads to information exposure through error message. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is...

6.3CVSS0.00547EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/08/15 2:32 a.m.3 views

CVE-2025-9004 mtons mblog password excessive authentication

A vulnerability was found in mtons mblog up to 3.5.0. This issue affects some unknown processing of the file /settings/password. The manipulation leads to improper restriction of excessive authentication attempts. The attack may be initiated remotely. The complexity of an attack is rather high. T...

6.3CVSS7.4AI score0.00895EPSS
Exploits1References4
CVE
CVE
added 2025/08/15 2:32 a.m.27 views

CVE-2025-9004

CVE-2025-9004 affects mtons mblog up to version 3.5.0 (and related advisories reference versions prior to 3.5.1). The issue stems from improper restriction of excessive authentication attempts when processing /settings/password, with potential remote initiation. Exploitation is described as diffi...

9.1CVSS7.4AI score0.00895EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/08/15 2:32 a.m.29 views

CVE-2025-9004 mtons mblog password excessive authentication

A vulnerability was found in mtons mblog up to 3.5.0. This issue affects some unknown processing of the file /settings/password. The manipulation leads to improper restriction of excessive authentication attempts. The attack may be initiated remotely. The complexity of an attack is rather high. T...

6.3CVSS0.00895EPSS
Exploits1References4
NVD
NVD
added 2025/08/15 2:15 a.m.25 views

CVE-2025-8992

A vulnerability has been found in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

6.5CVSS0.00249EPSS
Exploits1References4
OSV
OSV
added 2025/08/15 2:15 a.m.6 views

CVE-2025-8992

A vulnerability has been found in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

6.5CVSS5.1AI score0.00249EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/08/15 1:5 a.m.3 views

CVE-2025-8992 mtons mblog cross-site request forgery

A vulnerability has been found in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

5.3CVSS7AI score0.00249EPSS
Exploits1References4
CVE
CVE
added 2025/08/15 1:5 a.m.28 views

CVE-2025-8992

Summary: CVE-2025-8992 affects mtons mblog up to version 3.5.0, with a cross-site request forgery (CSRF) flaw arising in an unknown functionality. The vulnerability can be exploited remotely and exploit details have been publicly disclosed. Multiple connected sources corroborate this issue (Red H...

6.5CVSS7AI score0.00249EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/08/15 1:5 a.m.23 views

CVE-2025-8992 mtons mblog cross-site request forgery

A vulnerability has been found in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

5.3CVSS0.00249EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/08/15 12:0 a.m.6 views

mblog 安全漏洞

mblog is a blogging system by the individual developer langhsu. A security vulnerability exists in mblog 3.5.0 and earlier versions, which stems from an incorrect operation of the file /register that results in the disclosure of information via an error message...

6.3CVSS6.4AI score0.00547EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/08/15 12:0 a.m.5 views

mblog 安全漏洞

mblog is a blogging system by langhsu individual developer. A security vulnerability exists in mblog 3.5.0 and earlier versions, which stems from vulnerability to cross-site request forgery attacks...

6.5CVSS6.7AI score0.00249EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/08/15 12:0 a.m.4 views

mblog 安全漏洞

mblog is a blogging system by langhsu individual developers. A security vulnerability exists in mtons mblog 3.5.0 and earlier versions, which stems from an improperly restricted authentication attempt due to incorrect manipulation of the file /settings/password...

9.1CVSS6.8AI score0.00895EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/08/15 12:0 a.m.10 views

PT-2025-33424 · Mtons · Mtons Mblog

Name of the Vulnerable Software and Affected Versions: mtons mblog versions up to 3.5.0 Description: A cross-site request forgery issue exists in mtons mblog. The issue affects some unknown functionality and can be exploited remotely. The exploit has been publicly disclosed. Recommendations: Upda...

5.3CVSS4.5AI score0.00249EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2025/08/15 12:0 a.m.9 views

PT-2025-33435 · Mtons · Mtons Mblog

Name of the Vulnerable Software and Affected Versions: mtons mblog versions prior to 3.5.1 Description: A vulnerability was found in mtons mblog up to version 3.5.0. This issue affects some unknown processing of the file /settings/password. The manipulation leads to improper restriction of...

6.3CVSS4.2AI score0.00895EPSS
Exploits1References8
OSV
OSV
added 2025/08/13 8:15 p.m.4 views

CVE-2025-8927

A vulnerability was determined in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality of the file /email/sendcode of the component Verification Code Handler. The manipulation of the argument email leads to improper restriction of excessive authentication attempts. The...

3.7CVSS4.8AI score0.00636EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/08/13 8:2 p.m.5 views

CVE-2025-8927 mtons mblog Verification Code send_code excessive authentication

A vulnerability was determined in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality of the file /email/sendcode of the component Verification Code Handler. The manipulation of the argument email leads to improper restriction of excessive authentication attempts. The...

6.3CVSS7.5AI score0.00636EPSS
Exploits1References4
Rows per page
Query Builder