CVE-2020-18964 — CVSS 8.8 (high): Cross Site Request Forgery (CSRF) Vulnerability in ForestBlog latest version via the website Management background, which could let a…
CVE-2023-6887 — CVSS 6.3 (medium): A vulnerability classified as critical has been found in saysky ForestBlog up to 20220630. This affects an unknown part of the file…
CVE-2022-29020 — CVSS 6.1 (medium): ForestBlog through 2022-02-16 allows admin/profile/save userAvatar XSS during addition of a user avatar.
CVE-2021-46034 — CVSS 6.1 (medium): A problem was found in ForestBlog, as of 2021-12-29, there is a XSS vulnerability that can be injected through the nickname input box.
CVE-2024-57498 — CVSS 4.8 (medium): Cross Site Scripting vulnerability in sayski ForestBlog 20241223 allows a remote attacker to escalate privileges via the article editing…
CVE-2025-3004 — CVSS 3.5 (low): A vulnerability has been found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this vulnerability is an…
CVE-2025-3005 — CVSS 3.5 (low): A vulnerability was found in Sayski ForestBlog up to 20250321 and classified as problematic. Affected by this issue is some unknown…