Vulnerabilities (CVE)

Filtered by vendor Fantastic Blog Project Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-28512 1 Fantastic Blog Project 1 Fantastic Blog 2024-02-28 7.5 HIGH 9.8 CRITICAL
A SQL injection vulnerability exists in Sourcecodester Fantastic Blog CMS 1.0 . An attacker can inject query in "/fantasticblog/single.php" via the "id=5" parameters.
CVE-2021-26224 1 Fantastic Blog Project 1 Fantastic Blog 2024-02-28 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in SourceCodester Fantastic-Blog-CMS V 1.0 allows remote attackers to inject arbitrary web script or HTML via the search field to search.php.