CVE-2025-53631 | DogukanUrker flaskBlog up to 2.8.1 POST Request /createpost cross site scripting

Inserito da Angelo Barbosa | Ago 14, 2025 | CVE

A vulnerability, which was classified as problematic, has been found in DogukanUrker flaskBlog up to 2.8.1. Affected by this issue is some unknown functionality of the file /createpost of the component POST Request Handler. The manipulation leads to cross site scripting.

This vulnerability is handled as CVE-2025-53631. The attack may be launched remotely. There is no exploit available.

CVE-2025-53631 | DogukanUrker flaskBlog up to 2.8.1 POST Request /createpost cross site scripting

Post correlati

CVE-2025-23854 | Shoutcast and Icecast HTML5 Web Radio Player Plugin cross site scripting

CVE-2024-34457 | Apache StreamPark up to 2.1.3 privileges management

CVE-2025-7115 | rowboatlabs rowboat up to 8096eaf63b5a0732edd8f812bee05b78e214ee97 Session route.ts PUT params missing authentication (Issue 166)

CVE-2024-5639 | User Profile Picture Plugin up to 2.6.1 on WordPress resource injection