EUVD-2022-28836

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Cross-site scripting vulnerability in a-blog CMS affects several versions allowing script injection.

Reporter	Title	Published	Views	Family All 13
ATTACKERKB	CVE-2022-23916	24 Feb 202215:15	–	attackerkb
ATTACKERKB	CVE-2022-24374	24 Feb 202215:15	–	attackerkb
Circl	CVE-2022-23916	24 Feb 202218:21	–	circl
CNNVD	Appleple a-blog cms 跨站脚本漏洞	18 Feb 202200:00	–	cnnvd
CVE	CVE-2022-23916	24 Feb 202209:50	–	cve
Cvelist	CVE-2022-23916	24 Feb 202209:50	–	cvelist
Japan Vulnerability Notes	JVN#14706307: Multiple vulnerabilities in a-blog cms	18 Feb 202200:00	–	jvn
Japan Vulnerability Notes	Multiple vulnerabilities in a-blog cms	18 Feb 202206:55	–	jvn
NVD	CVE-2022-23916	24 Feb 202215:15	–	nvd
Prion	Cross site scripting	24 Feb 202215:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "664a41b3-b1c0-305a-bb06-31629a981648",
        "vendor": {
          "name": "appleple inc."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "8d61af5b-b0eb-35c0-8847-eae1b1daae84",
        "product": {
          "name": "a-blog cms"
        },
        "product_version": "Ver.2.8.x series versions prior to Ver.2.8.75, Ver.2.9.x series versions prior to Ver.2.9.40, Ver.2.10.x series versions prior to Ver.2.10.44, Ver.2.11.x series versions prior to Ver.2.11.42, and Ver.3.0.x series versions prior to Ver.3.0.1"
      }
    ]
  }
]

Source	Link
developer	www.developer.a-blogcms.jp/blog/news/security-202202.html
jvn	www.jvn.jp/en/jp/JVN14706307/index.html

03 Oct 2025 20:07Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.16.1

CVSS 24.3

EPSS0.00347