EUVD-2022-28740

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Template injection vulnerability in a-blog cms allows remote authenticated attacker to access files.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2022-23810	24 Feb 202215:15	–	attackerkb
CNNVD	Appleple a-blog cms 代码注入漏洞	18 Feb 202200:00	–	cnnvd
CVE	CVE-2022-23810	24 Feb 202209:50	–	cve
Cvelist	CVE-2022-23810	24 Feb 202209:50	–	cvelist
Japan Vulnerability Notes	JVN#14706307: Multiple vulnerabilities in a-blog cms	18 Feb 202200:00	–	jvn
Japan Vulnerability Notes	Multiple vulnerabilities in a-blog cms	18 Feb 202206:55	–	jvn
NVD	CVE-2022-23810	24 Feb 202215:15	–	nvd
Prion	Sql injection	24 Feb 202215:15	–	prion
RedhatCVE	CVE-2022-23810	22 May 202522:28	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "57b41248-cd36-3e3f-ba97-3980dc1fedba",
        "vendor": {
          "name": "appleple inc."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "a78aa60e-341e-30bd-aee2-19fb53928249",
        "product": {
          "name": "a-blog cms"
        },
        "product_version": "Ver.2.8.x series versions prior to Ver.2.8.75, Ver.2.9.x series versions prior to Ver.2.9.40, Ver.2.10.x series versions prior to Ver.2.10.44, Ver.2.11.x series versions prior to Ver.2.11.42, and Ver.3.0.x series versions prior to Ver.3.0.1"
      }
    ]
  }
]

Source	Link
developer	www.developer.a-blogcms.jp/blog/news/security-202202.html
jvn	www.jvn.jp/en/jp/JVN14706307/index.html

03 Oct 2025 20:07Current

6.1Medium risk

Vulners AI Score6.1

CVSS 3.16.5

CVSS 24

EPSS0.003