PT-2025-26444 · Unknown · Code-Projects Responsive Blog

Yunlin

Publicado

2025-06-20

Atualizado

2025-07-11

CVE-2025-6353

CVSS v3.1

5.4

Média

Vetor

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions: code-projects Responsive Blog version 1.0

Description: A problematic issue exists in code-projects Responsive Blog 1.0. The vulnerability affects an unknown functionality within the /search.php file. Manipulation of the argument keyword can lead to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Recommendations: code-projects Responsive Blog version 1.0: Sanitize or properly encode the argument keyword within the /search.php file to prevent cross site scripting.

Exploit

Correção

Code Injection

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94CWE-79

Identificadores relacionados

CVE-2025-6353

Produtos afetados

Code-Projects Responsive Blog

PT-2025-26444 · Unknown · Code-Projects Responsive Blog

CVE-2025-6353

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 12