Lucene search
K

12 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/04 12:0 a.m.2 views

CVE-2026-38669

wCMS v.1.4 is vulnerable to Cross Site Scripting XSS when creating a new blog...

5.8AI score0.00149EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-17091

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wp-admin/user-new.php in WordPress before 4.9.1 sets the newbloguser key to a string that can be directly derived from the user ID, which allows remote attacker...

8.8CVSS7.8AI score0.08204EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/05/17 9:1 p.m.25 views

CVE-2020-18194

Cross Site Scripting XSS in emlog v6.0.0 allows remote attackers to execute arbitrary code by adding a crafted script as a link to a new blog post...

6.2AI score0.01524EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/05/17 12:0 a.m.3 views

Emlog 跨站脚本漏洞

emlog is a PHP and MySQL based blog and CMS builder. A cross-site scripting vulnerability exists in emlog version 6.0.0. The vulnerability can be exploited to execute arbitrary code by adding a specially crafted script as a link to a new blog post...

6.1CVSS5.7AI score0.01524EPSS
Exploits1References2
NVD
NVD
added 2019/09/21 6:15 p.m.37 views

CVE-2019-16661

Ogma CMS 0.5 has XSS via creation of a new blog...

5.4CVSS5.3AI score0.00677EPSS
Exploits1References1
OSV
OSV
added 2019/09/21 6:15 p.m.2 views

CVE-2019-16661

Ogma CMS 0.5 has XSS via creation of a new blog...

5.4CVSS6.1AI score0.00677EPSS
Exploits1References1
Richard Bejtlich's blog
Richard Bejtlich's blog
added 2018/01/08 7:49 p.m.31 views

Happy 15th Birthday TaoSecurity Blog

Today, 8 January 2018, is the 15th birthday of TaoSecurity Blog! This is also my 3,020th blog post. I wrote my first post on 8 January 2003 while working as an incident response consultant for Foundstone. I don't believe I've released statistics for the blog before, so here are a few. Blogger...

7AI score
Exploits0
Opera Security Advisories
Opera Security Advisories
added 2013/10/31 12:0 a.m.7 views

New home for the Security Group blog

News New home for the Security Group blog Share October 31st, 2013 Welcome to the new home of the Opera Security Group. We have changed our blogging platform. For more more information regarding the switch, please see this post. If you received this blog post in your feed reader, you do not need ...

8.8CVSS7.3AI score0.01654EPSS
Exploits4References1
NVD
NVD
added 2010/07/12 5:30 p.m.16 views

CVE-2010-2697

Cross-site scripting XSS vulnerability in Sijio Community Software allows remote authenticated users to inject arbitrary web script or HTML via the title parameter when adding a new blog, related to editblog/index.php. NOTE: some of these details are obtained from third party information...

3.5CVSS5.3AI score0.01335EPSS
Exploits0References5
Prion
Prion
added 2010/07/12 5:30 p.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in Sijio Community Software allows remote authenticated users to inject arbitrary web script or HTML via the title parameter when adding a new blog, related to editblog/index.php. NOTE: some of these details are obtained from third party information...

3.5CVSS5.7AI score0.01335EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2006/06/26 12:0 a.m.33 views

youtube.txt

Youtube.com Homepage: http://www.youtube.com Affected files: Search box input Adding a new blog: - Blog name XSS Vuln with cookie disclosure via search box: Data isn't sanatized when using the search box. For PoC input: PoC link:...

7.4AI score
Exploits0
Prion
Prion
added 2006/01/19 1:3 a.m.13 views

Authentication flaw

create.php in aoblogger 2.3 allows remote attackers to bypass authentication and create new blog entries by setting the uza parameter to 1...

5CVSS7.5AI score0.0293EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder