Lucene search
K

41 matches found

Positive Technologies
Positive Technologies
added 2025/08/26 12:0 a.m.6 views

PT-2025-34724 · Mtons · Mtons Mblog

Name of the Vulnerable Software and Affected Versions: mtons mblog versions up to 3.5.0 Description: A vulnerability exists in mtons mblog up to version 3.5.0 within the Admin Panel component. Manipulation of the Title argument in the /admin/post/list file can lead to cross-site scripting. The...

6.1CVSS4.3AI score0.00334EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/08/26 12:0 a.m.4 views

PT-2025-34725 · Unknown · Mtons Mblog

Name of the Vulnerable Software and Affected Versions: mtons mblog versions up to 3.5.0 Description: A vulnerability exists in mtons mblog up to version 3.5.0. The issue is located in an unknown function within the /admin/user/list file of the Admin Panel component. Manipulation of the Name...

5.3CVSS6.4AI score0.0038EPSS
Exploits1References9
Vulnrichment
Vulnrichment
added 2025/08/25 11:32 p.m.2 views

CVE-2025-9429 mtons mblog Post submit cross site scripting

A security vulnerability has been detected in mtons mblog up to 3.5.0. This vulnerability affects unknown code of the file /post/submit of the component Post Handler. The manipulation of the argument content/title/ leads to cross site scripting. It is possible to initiate the attack remotely. The...

5.1CVSS3.8AI score0.00234EPSS
Exploits1References6
OSV
OSV
added 2025/08/25 11:15 a.m.8 views

CVE-2025-9407

A flaw has been found in mtons mblog up to 3.5.0. Affected by this vulnerability is an unknown functionality of the file /settings/profile. Executing manipulation of the argument signature can lead to cross site scripting. The attack may be launched remotely. The exploit has been published and ma...

5.4CVSS4AI score0.00225EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/08/25 10:32 a.m.10 views

CVE-2025-9407 mtons mblog profile cross site scripting

A flaw has been found in mtons mblog up to 3.5.0. Affected by this vulnerability is an unknown functionality of the file /settings/profile. Executing manipulation of the argument signature can lead to cross site scripting. The attack may be launched remotely. The exploit has been published and ma...

5.1CVSS0.00225EPSS
Exploits1References4
CVE
CVE
added 2025/08/25 10:32 a.m.21 views

CVE-2025-9407

CVE-2025-9407 affects mtons mblog up to version 3.5.0. The vulnerability lies in an unknown functionality of the file /settings/profile where manipulation of the signature parameter can trigger cross-site scripting. Exploitation is possible remotely. A fixed version is not present in the affected...

5.4CVSS3.7AI score0.00225EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.4 views

PT-2025-34605 · Mtons · Mtons Mblog

Name of the Vulnerable Software and Affected Versions: mtons mblog versions through 3.5.0 Description: A flaw has been found in mtons mblog. The vulnerability affects an unknown functionality of the file /settings/profile. Manipulation of the argument signature can lead to cross-site scripting. T...

5.4CVSS3.5AI score0.00225EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.7 views

PT-2025-34720 · Mtons · Mtons Mblog

Name of the Vulnerable Software and Affected Versions: mtons mblog versions prior to 3.5.1 Description: A security vulnerability has been detected in mtons mblog. The vulnerability affects unknown code within the /post/submit file of the Post Handler component. Manipulation of the content/title...

5.4CVSS3.9AI score0.00234EPSS
Exploits1References11
RedhatCVE
RedhatCVE
added 2025/08/17 1:32 a.m.13 views

CVE-2025-8992

A vulnerability has been found in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

6.5CVSS7.1AI score0.00249EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/08/15 8:32 p.m.9 views

CVE-2025-8927

A vulnerability was determined in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality of the file /email/sendcode of the component Verification Code Handler. The manipulation of the argument email leads to improper restriction of excessive authentication attempts. The...

6.3CVSS7.6AI score0.00636EPSS
Exploits1References1
OSV
OSV
added 2025/08/15 3:15 a.m.9 views

CVE-2025-9005

A vulnerability was determined in mtons mblog up to 3.5.0. Affected is an unknown function of the file /register. The manipulation leads to information exposure through error message. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is...

3.7CVSS4.8AI score0.00547EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/08/15 3:2 a.m.12 views

CVE-2025-9005 mtons mblog register information exposure

A vulnerability was determined in mtons mblog up to 3.5.0. Affected is an unknown function of the file /register. The manipulation leads to information exposure through error message. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is...

6.3CVSS0.00547EPSS
Exploits1References4
NVD
NVD
added 2025/08/15 2:15 a.m.24 views

CVE-2025-8992

A vulnerability has been found in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

6.5CVSS0.00249EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/08/15 1:5 a.m.3 views

CVE-2025-8992 mtons mblog cross-site request forgery

A vulnerability has been found in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

5.3CVSS7AI score0.00249EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/08/15 1:5 a.m.22 views

CVE-2025-8992 mtons mblog cross-site request forgery

A vulnerability has been found in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to the public and may be used...

5.3CVSS0.00249EPSS
Exploits1References4
CVE
CVE
added 2025/08/15 1:5 a.m.28 views

CVE-2025-8992

Summary: CVE-2025-8992 affects mtons mblog up to version 3.5.0, with a cross-site request forgery (CSRF) flaw arising in an unknown functionality. The vulnerability can be exploited remotely and exploit details have been publicly disclosed. Multiple connected sources corroborate this issue (Red H...

6.5CVSS7AI score0.00249EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/15 12:0 a.m.7 views

PT-2025-33435 · Mtons · Mtons Mblog

Name of the Vulnerable Software and Affected Versions: mtons mblog versions prior to 3.5.1 Description: A vulnerability was found in mtons mblog up to version 3.5.0. This issue affects some unknown processing of the file /settings/password. The manipulation leads to improper restriction of...

6.3CVSS4.2AI score0.00895EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2025/08/15 12:0 a.m.9 views

PT-2025-33424 · Mtons · Mtons Mblog

Name of the Vulnerable Software and Affected Versions: mtons mblog versions up to 3.5.0 Description: A cross-site request forgery issue exists in mtons mblog. The issue affects some unknown functionality and can be exploited remotely. The exploit has been publicly disclosed. Recommendations: Upda...

5.3CVSS4.5AI score0.00249EPSS
Exploits1References8
NVD
NVD
added 2025/08/13 8:15 p.m.8 views

CVE-2025-8927

A vulnerability was determined in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality of the file /email/sendcode of the component Verification Code Handler. The manipulation of the argument email leads to improper restriction of excessive authentication attempts. The...

6.3CVSS0.00636EPSS
Exploits1References4
OSV
OSV
added 2025/08/13 8:15 p.m.4 views

CVE-2025-8927

A vulnerability was determined in mtons mblog up to 3.5.0. Affected by this issue is some unknown functionality of the file /email/sendcode of the component Verification Code Handler. The manipulation of the argument email leads to improper restriction of excessive authentication attempts. The...

3.7CVSS4.8AI score0.00636EPSS
Exploits1References4
Rows per page
Query Builder