VYPR
Vendor

Otale

Products
2
CVEs
4
Across products
4
Status
Private

Products

2

Recent CVEs

4
  • CVE-2025-69749Jan 29, 2026
    risk 0.00cvss epss 0.00

    Cross Site Scripting vulnerability in tale v.2.0.5 allows an attacker to execute arbitrary code.

  • CVE-2025-2340Mar 16, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in otale Tale Blog 2.0.5. It has been declared as problematic. This vulnerability affects the function saveOptions of the file /options/save of the component Site Settings. The manipulation of the argument Site Title leads to cross site scripting. The…

  • CVE-2025-2339Mar 16, 2025
    risk 0.00cvss epss 0.01

    A vulnerability was found in otale Tale Blog 2.0.5. It has been classified as problematic. This affects an unknown part of the file /%61dmin/api/logs. The manipulation leads to improper authentication. It is possible to initiate the attack remotely. The exploit has been…

  • CVE-2025-1585Feb 23, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, has been found in otale tale up to 2.0.5. This issue affects the function OptionsService of the file src/main/resources/templates/themes/default/partial/header.html. The manipulation of the argument logo_url leads to cross…