CVE-2025-9429 | mtons mblog up to 3.5.0 Post /post/submit cross site scripting

Inserito da Angelo Barbosa | Ago 25, 2025 | CVE

A vulnerability marked as problematic has been reported in mtons mblog up to 3.5.0. This vulnerability affects unknown code of the file /post/submit of the component Post Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2025-9429. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-9429 | mtons mblog up to 3.5.0 Post /post/submit cross site scripting

Post correlati

CVE-2024-32878 | ggerganov llama.cpp gguf_init_from_file missing initialization (b2740)

CVE-2024-50703 | TeamPass up to 3.1.3.0 user_id external control of assumed-immutable web parameter

CVE-2024-52599 | Enalean Tuleap Community Edition/Tuleap Enterprise Edition Gantt Chart cross site scripting

CVE-2024-13360 | AI Power Plugin up to 1.8.96 on WordPress server-side request forgery