CVE-2024-31395

🗓️ 22 May 2024 04:35:37Reported by jpcertType

Cross-site scripting vulnerability in a-blog cms prior to certain version

Reporter	Title	Published	Views	Family All 8
CNNVD	a-blog cms 安全漏洞	10 Apr 202400:00	–	cnnvd
CVE	CVE-2024-31395	22 May 202404:35	–	cve
Japan Vulnerability Notes	JVN#70977403: Multiple vulnerabilities in a-blog cms	10 Apr 202400:00	–	jvn
Japan Vulnerability Notes	Multiple vulnerabilities in a-blog cms	10 Apr 202404:55	–	jvn
NVD	CVE-2024-31395	22 May 202405:15	–	nvd
Positive Technologies	PT-2024-24041 · Unknown · A-Blog Cms	22 May 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-31395	23 May 202509:01	–	redhatcve
Vulnrichment	CVE-2024-31395	22 May 202404:35	–	vulnrichment

[
  {
    "vendor": "appleple inc.",
    "product": "a-blog cms Ver.3.1.x series",
    "versions": [
      {
        "version": "prior to Ver.3.1.12",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "appleple inc.",
    "product": "a-blog cms Ver.3.0.x series",
    "versions": [
      {
        "version": "prior to Ver.3.0.32",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "appleple inc.",
    "product": "a-blog cms Ver.2.11.x series",
    "versions": [
      {
        "version": "prior to Ver.2.11.61",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "appleple inc.",
    "product": "a-blog cms Ver.2.10.x series",
    "versions": [
      {
        "version": "prior to Ver.2.10.53",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "appleple inc.",
    "product": "a-blog cms",
    "versions": [
      {
        "version": "Ver.2.9 and earlier ",
        "status": "affected"
      }
    ]
  }
]

Source	Link
jvn	www.jvn.jp/en/jp/JVN70977403/
developer	www.developer.a-blogcms.jp/blog/news/JVN-70977403.html

22 May 2024 04:35Current

6.4Medium risk

Vulners AI Score6.4

EPSS0.00304