CVE-2025-9429

Medium CVSS: 5.1

A security vulnerability has been detected in mtons mblog up to 3.5.0. This vulnerability affects unknown code of the file /post/submit of the component Post Handler. The manipulation of the argument content/title/ leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed publicly and may be used.

Vendor

Mtons

Product

Mblog

CWE

CWE-79

Yayın Tarihi

2025-08-26 00:15:31

Güncelleme

2025-08-28 14:00:24

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-79 Mblog MEDIUM Mtons 2025

Referanslar

https://gitee.com/mtons/mblog/issues/ICPMLJ https://gitee.com/mtons/mblog/issues/ICPMLW https://vuldb.com/?ctiid.321270 https://vuldb.com/?id.321270 https://vuldb.com/?submit.634153 https://vuldb.com/?submit.634155

Benzer Kayıtlar

Medium

CVE-2025-9647

A weakness has been identified in mtons mblog up to 3.5.0. This issue affects some unknown processing of the file /admin…

Medium

CVE-2025-9433

A vulnerability was found in mtons mblog up to 3.5.0. The impacted element is an unknown function of the file /admin/use…

Medium

CVE-2025-9431

A flaw has been found in mtons mblog up to 3.5.0. Impacted is an unknown function of the file /search. This manipulation…

Medium

CVE-2025-9432

A vulnerability has been found in mtons mblog up to 3.5.0. The affected element is an unknown function of the file /admi…

Medium

CVE-2025-9430

A vulnerability was detected in mtons mblog up to 3.5.0. This issue affects some unknown processing of the file /admin/o…

Medium

CVE-2025-9407

A flaw has been found in mtons mblog up to 3.5.0. Affected by this vulnerability is an unknown functionality of the file…