CVE-2024-13192 | ZeroWdd myblog 1.0 BlogController.java update cross site scripting

Posted by Angelo Barbosa | Jan 8, 2025 | CVE

A vulnerability, which was classified as problematic, was found in ZeroWdd myblog 1.0. Affected is the function update of the file src/main/java/com/wdd/myblog/controller/admin/BlogController.java. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-13192. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2024-13192 | ZeroWdd myblog 1.0 BlogController.java update cross site scripting

Related Posts

CVE-2024-10300 | PHPGurukul Medical Card Generation System 1.0 View Enquiry Page /admin/view-enquiry.php viewid sql injection

CVE-2024-47172 | cvat-ai cvat up to 2.19.0 authorization (GHSA-gxhm-hg65-5gh2)

CVE-2022-22491 | IBM App Connect Enterprise Certified Container up to 12.4 allocation of resources

CVE-2024-27758 | RPyC numpy.array security check