a-blog cms provided by appleple Inc. is a content management system (CMS). a-blog cms contains a vulnerability in session management of the comment functionality.
An arbitrary comment posted may be deleted or a commenter's e-mail address may be obtained by an unauthenticated remote attacker.
Apply the Patch
Apply the patch according to the information provided by the developer.
If a user has customized a-blog cms, modifying some of the templates may be necessary.
For details, refer to the readme.md contained in the patch.
## Products Affected