blog_mini_project CVE Vulnerabilities & CVE List (3)

Products (CPE): — CVEs: 3

blog_mini_project vulnerability overview

Aggregates CVE and security vulnerability intelligence across all blog_mini_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Disclosed issues often relate to vendor risk cross-site scripting; exposure may include vendor impact session compromise in vendor surface production workloads and vendor surface software deployment contexts.

Vulnerability distribution trend (last 24 months)

CVE	Summary	Source	Max CVSS	EPSS %	Published	Updated
CVE-2020-18999	Cross Site Scripting (XSS) in Blog_mini v1.0 allows remote attackers to execute arbitrary code via the component '/admin/submit-articles'.	[email protected]	6.1	0.46%	2021-08-27	2024-11-21
CVE-2020-18998	Cross Site Scripting (XSS) in Blog_mini v1.0 allows remote attackers to execute arbitrary code via the component '/admin/custom/blog-plugin/add'.	[email protected]	6.1	0.46%	2021-08-27	2024-11-21
CVE-2019-9765	In Blog_mini 1.0, XSS exists via the author name of a comment reply in the app/main/views.py articleDetails() function, related to app/templates/_article_comments.html.	[email protected]	6.1	0.24%	2019-03-14	2024-11-21

cvelogic Threat Intelligence