vendor:
Light Blog
by:
BlackHawk
8,8
CVSS
HIGH
Multiple Vulnerabilities
79, 264, 22
CWE
Product Name: Light Blog
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: No
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009
Light Blog Multiple Vulnerabilities Exploit
Light Blog is vulnerable to multiple vulnerabilities such as lack of authentication for creating new posts, XSS, and deleting blog.php. These vulnerabilities can be exploited to create new posts, deface the blog, and delete blog.php.
Mitigation:
Ensure authentication is required for creating new posts, use input validation to prevent XSS, and restrict access to blog.php.
