CVE-2024-13199 | langhsu Mblog Blog System 3.5.0 Search Bar /search kw cross site scripting

A vulnerability classified as problematic was found in langhsu Mblog Blog System 3.5.0. Affected by this vulnerability is an unknown functionality of the file /search of the component Search Bar. The manipulation of the argument kw leads to cross site scripting.

This vulnerability is known as CVE-2024-13199. The attack can be launched remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-13199 | langhsu Mblog Blog System 3.5.0 Search Bar /search kw cross site scripting

Related Posts

CVE-2024-53284 | Synology Router Manager up to 1.3.1-9346-9 WiFi Connect Setting cross site scripting (SA_24_09)

CVE-2024-11664 | eNMS up to 4.2 TGZ File eNMS/controller.py multiselect_filtering path traversal

CVE-2024-6256 | smub Feeds for YouTube Plugin up to 2.2.1 on WordPress Shortcode cross site scripting

CVE-2024-1596 | Ninja Forms File Uploads Plugin up to 3.3.16 on WordPress File Upload cross site scripting