Today > | 7 High | 24 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-39203

July 8, 2024, 4:35 p.m.

Product(s) Impacted

Z-BlogPHP

  • 1.7.3

Description

A cross-site scripting (XSS) vulnerability in the Backend Theme Management module of Z-BlogPHP v1.7.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

Weaknesses

Date

Published: July 8, 2024, 4:15 p.m.

Last Modified: July 8, 2024, 4:35 p.m.

Status : Undergoing Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

cve@mitre.org

References

https://github.com/ cve@mitre.org