CVE-2024-54954 | OneBlog 2.3.6 Template Management Page injection

Posted by Angelo Barbosa | Feb 10, 2025 | CVE

A vulnerability was found in OneBlog 2.3.6. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Template Management Page. The manipulation leads to injection.

This vulnerability is handled as CVE-2024-54954. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-54954 | OneBlog 2.3.6 Template Management Page injection

Related Posts

CVE-2024-11453 | Pinterest Plugin up to 1.8.8 on WordPress cross site scripting

CVE-2024-36944 | Linux Kernel up to 5.15.158/6.1.90/6.6.30/6.8.9 qxl_fence_wait buffer overflow

CVE-2024-7498 | itsourcecode Airline Reservation System 1.0 Admin Login Page /admin/login.php login/login2 username sql injection

CVE-2025-0881 | Codezips Gym Management System 1.0 saveroutine.php rname sql injection