CVE-2024-25167 | eblog 1.0 Comment description cross site scripting

Posted by Angelo Barbosa | Feb 29, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in eblog 1.0. Affected by this issue is some unknown functionality of the component Comment Handler. The manipulation of the argument description leads to cross site scripting.

This vulnerability is handled as CVE-2024-25167. The attack may be launched remotely. There is no exploit available.

CVE-2024-25167 | eblog 1.0 Comment description cross site scripting

Related Posts

CVE-2024-7331 | TOTOLINK A3300R 17.0.0cu.557_B20221024 /cgi-bin/cstecgi.cgi UploadCustomModule File buffer overflow

CVE-2024-32045 | Mattermost up to 8.1.12/9.5.3/9.6.1 Team Membership access control

Best Courier Management System Privilege Escalation

CVE-2023-50776 | PaaSLane Estimate Plugin up to 1.0.4 on Jenkins Controller File System information disclosure