Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Oneblog
(Oneblog_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-01-25 | CVE-2021-46085 | OneBlog <= 2.2.8 is vulnerable to Insecure Permissions. Low level administrators can delete high-level administrators beyond their authority. | Oneblog | 6.5 | ||
| 2022-01-19 | CVE-2021-46025 | A Cross SIte Scripting (XSS) vulnerability exists in OneBlog <= 2.2.8. via the add function in the operation tab list in the background. | Oneblog | 5.4 |