Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor A.kulikov Subscribe
Filtered by product Interra Blog Machine
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-1670 1 A.kulikov 1 Interra Blog Machine 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in actions/add.php in InTerra Blog Machine 1.84, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the subject parameter to post_url/edit.