CVE-2025-9433 | mtons mblog up to 3.5.0 Admin Panel /admin/user/list Name cross site scripting (ICPMMW)

Inserito da Angelo Barbosa | Ago 25, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in mtons mblog up to 3.5.0. The impacted element is an unknown function of the file /admin/user/list of the component Admin Panel. Performing manipulation of the argument Name results in cross site scripting.

This vulnerability was named CVE-2025-9433. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2025-9433 | mtons mblog up to 3.5.0 Admin Panel /admin/user/list Name cross site scripting (ICPMMW)

Post correlati

CVE-2024-2299 | parisneo lollms-webui Profile Picture cross site scripting

CVE-2024-33615 | CyberPower PowerPanel up to 4.9.0 ZIP File path traversal (icsa-24-123-01)

CVE-2024-10092 | Download Monitor Plugin up to 5.0.12 on WordPress API Key authorization

CVE-2025-21671 | Linux Kernel up to 6.1.126/6.6.73/6.12.10 zram_meta_alloc uninitialized pointer