CVE-2024-13190 – ZeroWdd Myblog Xml Injection

1月 8, 2025
10:17 pm

CVE ID : CVE-2024-13190

Published : Jan. 8, 2025, 9:15 p.m. | 1 hour, 1 minute ago

Description : A vulnerability classified as critical was found in ZeroWdd myblog 1.0. This vulnerability affects unknown code of the file src/main/resources/mapper/BlogMapper.xml. The manipulation of the argument findBlogList/getTotalBlogs leads to xml injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-13190 – ZeroWdd Myblog Xml Injection

Elvescore.io

Recent Posts

CVE-2024-56376 – REDCap Cross-Site Scripting (XSS)

CVE-2024-56377 – REDCap Stored Cross-Site Scripting (XSS) Vulnerability

CVE-2025-21380 – Azure SaaS Resource Authentication Bypass

CVE-2023-28354 – Opsview Monitor Agent Command Injection

CVE-2024-46464 – PRIMX ZED Enterprise Local File Manipulation Privilege Escalation

CVE-2024-51229 – LinZhaoguan pb-cms Cross Site Scripting (XSS)

CVE-2024-13190 – ZeroWdd Myblog Xml Injection

CVE-2024-13190 – ZeroWdd Myblog Xml Injection