Vulnerabilities > Flatpress

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-23	CVE-2021-41432	Cross-site Scripting vulnerability in Flatpress 1.2.1 A stored cross-site scripting (XSS) vulnerability exists in FlatPress 1.2.1 that allows for arbitrary execution of JavaScript commands through blog content. network low complexity flatpress CWE-79	5.4
2022-02-15	CVE-2022-24588	Cross-site Scripting vulnerability in Flatpress 1.2.1 Flatpress v1.2.1 was discovered to contain a cross-site scripting (XSS) vulnerability in the Upload SVG File function. network low complexity flatpress CWE-79	5.4
2021-07-30	CVE-2020-22761	Cross-Site Request Forgery (CSRF) vulnerability in Flatpress 1.1 Cross Site Request Forgery (CSRF) vulnerability in FlatPress 1.1 via the DeleteFile function in flat/admin.php. network low complexity flatpress CWE-352	8.8
2020-12-30	CVE-2020-35241	Cross-site Scripting vulnerability in Flatpress 1.0.3 FlatPress 1.0.3 is affected by cross-site scripting (XSS) in the Blog Content component. network low complexity flatpress CWE-79	4.8

Vulnerabilities > Flatpress {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Flatpress"}]}