Search Results | AttackerKB

Attacker Value

Disclosure Date: May 08, 2023 (last updated October 08, 2023)

OS Command injection vulnerability in mblog 3.5.0 allows attackers to execute arbitrary code via crafted theme when it gets selected.

Attacker Value

Disclosure Date: April 01, 2021 (last updated February 22, 2025)

Cross Site Scripting (XSS) vulnerability in mblog 3.5 via the post content field to /post/editing.

Attacker Value

Disclosure Date: April 01, 2021 (last updated February 22, 2025)

Cross Site Scripting (XSS) vulnerability in mblog 3.5 via the signature field to /settings/profile.

Attacker Value

Disclosure Date: April 01, 2021 (last updated February 22, 2025)

Cross Site Scripting (XSS) vulnerability in mblog 3.5 via the nickname field to /settings/profile.

Attacker Value

Disclosure Date: April 01, 2021 (last updated February 22, 2025)

Cross Site Scripting (XSS) vulnerability in mblog 3.5 via the post header field to /post/editing.

Quick Cookie Notification