CVE-2024-13198 | langhsu Mblog Blog System 3.5.0 /login observable response discrepancy

A vulnerability classified as problematic has been found in langhsu Mblog Blog System 3.5.0. Affected is an unknown function of the file /login. The manipulation leads to observable response discrepancy.

This vulnerability is traded as CVE-2024-13198. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-13198 | langhsu Mblog Blog System 3.5.0 /login observable response discrepancy

Post correlati

CVE-2023-52069 | kalcaddle kodbox 1.49.04 URL Parameter cross site scripting

CVE-2024-7181 | TOTOLINK A3600R 4.1.2cu.5182_B20201102 /cgi-bin/cstecgi.cgi setTelnetCfg telnet_enabled command injection

CVE-2023-49077 | Mailcow prior 2023-11 Quarantine UI cross site scripting (GHSA-46×4-w2fm-5x6g)

CVE-2024-54097 | Huawei HarmonyOS/EMUI HiView Module external control of system or configuration setting