CVE-2025-9647 | mtons mblog up to 3.5.0 /admin/role/list Name cross site scripting (ICPMNE)

Inserito da Angelo Barbosa | Ago 29, 2025 | CVE

A vulnerability was found in mtons mblog up to 3.5.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/role/list. This manipulation of the argument Name causes cross site scripting.

This vulnerability appears as CVE-2025-9647. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2025-9647 | mtons mblog up to 3.5.0 /admin/role/list Name cross site scripting (ICPMNE)

Post correlati

CVE-2024-51497 | LibreNMS up to 24.9.x Custom OID Tab unit cross site scripting

CVE-2024-12828 | Webmin CGI command injection (ZDI-24-1725)

CVE-2024-42027 | Rocket.Chat Mobile up to 4.5.0 E2EE Password entropy

CVE-2025-4265 | PHPGurukul Emergency Ambulance Hiring Portal 1.0 /admin/contact-us.php mobnum sql injection