CVE-2025-6347

A vulnerability was found in code-projects Responsive Blog 1.0/1.12.4/3.3.4. It has been declared as problematic. This vulnerability affects unknown code of the file /responsive/resblog/blogadmin/admin/pageViewMembers.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
2.4 LOW
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N
VulDBCNA
2.4 LOW
CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 6%
VendorProductVersion
fabianresponsive_blog_site
1.0
fabianresponsive_blog_site
1.12.4
fabianresponsive_blog_site
3.3.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://code-projects.org/
https://gist.github.com/0xCaptainFahim/8bb9021dcea33863eaf0279aaca2671c
https://vuldb.com/?ctiid.313342
https://vuldb.com/?id.313342
https://vuldb.com/?submit.595676