Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2011-1670

Cross-site scripting (XSS) vulnerability in actions/add.php in InTerra Blog Machine 1.84, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the subject parameter to post_url/edit.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 81.9%
CVSS Severity
CVSS v2 Score 4.3
Products affected by CVE-2011-1670


Contact Us

Shodan ® - All rights reserved