Forestblog@* Security Vulnerabilities and Issues — Forestblog@* CVE List

Lucene search

Forestblog ProjectForestblog*

4 matches found

CVE•added 2023/12/17 1:15 a.m.•58 views

CVE-2023-6887

A vulnerability classified as critical has been found in saysky ForestBlog up to 20220630. This affects an unknown part of the file /admin/upload/img of the component Image Upload Handler. The manipulation of the argument filename leads to unrestricted upload. It is possible to initiate the attack ...

9.8CVSS8.1AI score0.00077EPSS

CVE•added 2022/04/16 12:15 a.m.•57 views

CVE-2022-29020

ForestBlog through 2022-02-16 allows admin/profile/save userAvatar XSS during addition of a user avatar.

6.1CVSS6AI score0.00212EPSS

CVE•added 2025/03/31 6:15 p.m.•50 views

CVE-2025-3005

A vulnerability was found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this issue is some unknown functionality of the component Friend Link Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed...

5.4CVSS3.8AI score0.00033EPSS

CVE•added 2025/03/31 5:15 p.m.•46 views

CVE-2025-3004

A vulnerability has been found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /search. The manipulation of the argument keywords leads to cross site scripting. The attack can be launched remotely. The exploit...

5.4CVSS3.9AI score0.00033EPSS