CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2024-54954: OneBlog v2.3.6 was discovered to contain a template injection vulnerability via the template management department.
Description
OneBlog v2.3.6 was discovered to contain a template injection vulnerability via the template management department.
Classification
CVE ID: CVE-2024-54954
Affected Products
Vendor: n/a
Product: n/a
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 11.88% (scored less or equal to compared to others)
EPSS Date: 2025-03-11 (when was this score calculated)
References
https://gitee.com/yadong.zhang/DBlog/issues/IB6552https://gist.github.com/kaoniniang2/03658cc78e789b992b378f4951bedfb7