Otale
Products
2- 2 CVEs
- 2 CVEs
Recent CVEs
4| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-69749 | 0.00 | — | 0.00 | Jan 29, 2026 | Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code. | |||
| CVE-2025-2340 | 0.00 | — | 0.00 | Mar 16, 2025 | A vulnerability was found in otale Tale Blog 2.0.5. It has been declared as problematic. This vulnerability affects the function saveOptions of the file /options/save of the component Site Settings. The manipulation of the argument Site Title leads to cross site scripting. The… | |||
| CVE-2025-2339 | 0.00 | — | 0.01 | Mar 16, 2025 | A vulnerability was found in otale Tale Blog 2.0.5. It has been classified as problematic. This affects an unknown part of the file /%61dmin/api/logs. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit has been… | |||
| CVE-2025-1585 | 0.00 | — | 0.00 | Feb 23, 2025 | A vulnerability, which was classified as problematic, has been found in otale tale up to 2.0.5. This issue affects the function OptionsService of the file src/main/resources/templates/themes/default/partial/header.html. The manipulation of the argument logo_url leads to cross… |
- CVE-2025-69749Jan 29, 2026risk 0.00cvss —epss 0.00
Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code.
- CVE-2025-2340Mar 16, 2025risk 0.00cvss —epss 0.00
A vulnerability was found in otale Tale Blog 2.0.5. It has been declared as problematic. This vulnerability affects the function saveOptions of the file /options/save of the component Site Settings. The manipulation of the argument Site Title leads to cross site scripting. The…
- CVE-2025-2339Mar 16, 2025risk 0.00cvss —epss 0.01
A vulnerability was found in otale Tale Blog 2.0.5. It has been classified as problematic. This affects an unknown part of the file /%61dmin/api/logs. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit has been…
- CVE-2025-1585Feb 23, 2025risk 0.00cvss —epss 0.00
A vulnerability, which was classified as problematic, has been found in otale tale up to 2.0.5. This issue affects the function OptionsService of the file src/main/resources/templates/themes/default/partial/header.html. The manipulation of the argument logo_url leads to cross…