Olive Design Olive Blog — known CVE vulnerabilities
Every CVE whose affected-product data names Olive Design Olive Blog, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2016-7839 — CVSS 6.1 (medium): Cross-site scripting vulnerability in Olive Blog allows remote attackers to inject arbitrary web script or HTML via the search parameter.
CVE-2016-7840 — CVSS 6.1 (medium): Cross-site scripting vulnerability in WEB SCHEDULE allows remote attackers to inject arbitrary web script or HTML via the month parameter.