Vulnerabilities > Flatpress > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-12-28 CVE-2022-4821 Unspecified vulnerability in Flatpress
A vulnerability classified as problematic was found in FlatPress.
network
low complexity
flatpress
6.1
2022-12-28 CVE-2022-4822 Unspecified vulnerability in Flatpress
A vulnerability, which was classified as problematic, has been found in FlatPress.
network
low complexity
flatpress
6.1
2022-12-27 CVE-2022-4755 Unspecified vulnerability in Flatpress
A vulnerability was found in FlatPress and classified as problematic.
network
low complexity
flatpress
6.1
2022-12-18 CVE-2022-4605 Unspecified vulnerability in Flatpress
Cross-site Scripting (XSS) - Stored in GitHub repository flatpressblog/flatpress prior to 1.3.
network
low complexity
flatpress
5.4
2022-10-11 CVE-2022-40047 Cross-site Scripting vulnerability in Flatpress 1.2.1
Flatpress v1.2.1 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the page parameter at /flatpress/admin.php.
network
low complexity
flatpress CWE-79
5.4
2022-06-23 CVE-2021-41432 Cross-site Scripting vulnerability in Flatpress 1.2.1
A stored cross-site scripting (XSS) vulnerability exists in FlatPress 1.2.1 that allows for arbitrary execution of JavaScript commands through blog content.
network
low complexity
flatpress CWE-79
5.4
2022-02-15 CVE-2022-24588 Cross-site Scripting vulnerability in Flatpress 1.2.1
Flatpress v1.2.1 was discovered to contain a cross-site scripting (XSS) vulnerability in the Upload SVG File function.
network
low complexity
flatpress CWE-79
5.4
2020-12-30 CVE-2020-35241 Cross-site Scripting vulnerability in Flatpress 1.0.3
FlatPress 1.0.3 is affected by cross-site scripting (XSS) in the Blog Content component.
network
low complexity
flatpress CWE-79
4.8