EUVD-2024-21235

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Cross-site scripting vulnerability in a-blog cms affects multiple versions allowing script execution.

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2024-23782	29 Jan 202400:26	–	circl
CNNVD	a-blog cms security breach	28 Jan 202400:00	–	cnnvd
CVE	CVE-2024-23782	28 Jan 202423:09	–	cve
Cvelist	CVE-2024-23782	28 Jan 202423:09	–	cvelist
Japan Vulnerability Notes	JVN#34565930: Multiple vulnerabilities in a-blog cms	22 Jan 202400:00	–	jvn
Japan Vulnerability Notes	Multiple vulnerabilities in a-blog cms	22 Jan 202406:08	–	jvn
NVD	CVE-2024-23782	28 Jan 202423:15	–	nvd
OSV	CVE-2024-23782	28 Jan 202423:15	–	osv
Prion	Cross site scripting	28 Jan 202423:15	–	prion
Positive Technologies	PT-2024-20081 · Unknown · A-Blog Cms	28 Jan 202400:00	–	ptsecurity

[
  {
    "enisaIdVendor": [
      {
        "id": "1f66657a-478d-3d9a-916e-7bc98f29ba87",
        "vendor": {
          "name": "appleple inc."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "05828751-863a-3660-a342-dce3fabe927f",
        "product": {
          "name": "a-blog cms"
        }
      },
      {
        "id": "0a883143-75a7-3ab6-8b1c-13158e7539e8",
        "product": {
          "name": "a-blog cms"
        },
        "product_version": "Ver.2.9.0 and earlier"
      },
      {
        "id": "160fe44d-4ee1-3f4a-baf2-44e506a9c407",
        "product": {
          "name": "a-blog cms Ver.3.1.x series"
        },
        "product_version": "prior to Ver.3.1.7"
      },
      {
        "id": "4052abfc-9723-39c1-acf8-a0aafd9ca8a4",
        "product": {
          "name": "a-blog cms Ver.2.11.x series"
        },
        "product_version": "prior to Ver.2.11.58"
      },
      {
        "id": "5b44f47a-303f-300b-a18c-fed8c9e2e6a9",
        "product": {
          "name": "a-blog cms Ver.3.1.x series"
        }
      },
      {
        "id": "7498d422-512d-319b-92a2-988fae408e64",
        "product": {
          "name": "a-blog cms Ver.2.10.x series"
        }
      },
      {
        "id": "92cb7ef3-d956-35e0-ad7d-be5ae39d8e01",
        "product": {
          "name": "a-blog cms Ver.3.0.x series"
        }
      },
      {
        "id": "ae3be161-5a50-3c21-bb1c-3eb31172735c",
        "product": {
          "name": "a-blog cms Ver.2.10.x series"
        },
        "product_version": "prior to Ver.2.10.50"
      },
      {
        "id": "e39461d6-85c3-3ae4-b5fe-cbebb1b8f4d0",
        "product": {
          "name": "a-blog cms Ver.3.0.x series"
        },
        "product_version": "prior to Ver.3.0.29"
      },
      {
        "id": "f33691b9-db97-31b6-94e5-f7c91600a211",
        "product": {
          "name": "a-blog cms Ver.2.11.x series"
        }
      }
    ]
  }
]

Source	Link
developer	www.developer.a-blogcms.jp/blog/news/JVN-34565930.html
jvn	www.jvn.jp/en/jp/JVN34565930/
nvd	www.nvd.nist.gov/vuln/detail/CVE-2024-23782

03 Oct 2025 20:07Current

5.7Medium risk

Vulners AI Score5.7

CVSS 3.15.4

EPSS0.00383

SSVC