Newtelligence Dasblog vulnerabilities
2 known vulnerabilities affecting newtelligence/dasblog.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2004-1657P4MEDIUMCVSS 4.3PoCv1.3v1.4+2 more2004-09-01
CVE-2004-1657 [MEDIUM] CVE-2004-1657: Cross-site scripting (XSS) vulnerability in the Activity and Events Viewer for Newtelligence DasBlog
Cross-site scripting (XSS) vulnerability in the Activity and Events Viewer for Newtelligence DasBlog allows remote attackers to inject arbitrary web script or HTML via the (1) User Agent or (2) Referrer HTTP headers.
nvd
CVE-2014-7292P4MEDIUMCVSS 5.8v2.1v2.2+1 more2014-10-23
CVE-2014-7292 [MEDIUM] CVE-2014-7292: Open redirect vulnerability in the Click-Through feature in Newtelligence dasBlog 2.1 (2.1.8102.813)
Open redirect vulnerability in the Click-Through feature in Newtelligence dasBlog 2.1 (2.1.8102.813), 2.2 (2.2.8279.16125), and 2.3 (2.3.9074.18820) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter to ct.ashx.
nvd