RSS   Vulnerabilities for 'Forestblog'   RSS

2022-01-25
 
CVE-2021-46033

CWE-434
 

 
In ForestBlog, as of 2021-12-28, File upload can bypass verification.

 
 
CVE-2021-46034

CWE-79
 

 
A problem was found in ForestBlog, as of 2021-12-29, there is a XSS vulnerability that can be injected through the nickname input box.

 
2021-05-11
 
CVE-2020-18964

CWE-352
 

 
Cross Site Request Forgery (CSRF) Vulnerability in ForestBlog latest version via the website Management background, which could let a remote malicious gain privileges.

 


Copyright 2024, cxsecurity.com

 

Back to Top