Lucene search
HistoryMar 12, 2024 - 9:15 a.m.
CVE-2024-27279
directory traversal
a-blog cms
arbitrary files access
privileged users
vulnerability
Directory traversal vulnerability exists in a-blog cms Ver.3.1.x series Ver.3.1.9 and earlier, Ver.3.0.x series Ver.3.0.30 and earlier, Ver.2.11.x series Ver.2.11.59 and earlier, Ver.2.10.x series Ver.2.10.51 and earlier, and Ver.2.9 and earlier versions. If this vulnerability is exploited, a user with editor or higher privilege who can login to the product may obtain arbitrary files on the server including password files.
Related
cve
cve
CVE-2024-27279
2024-03-12 09:15:10
prion
prion
Directory traversal
2024-03-12 09:15:00
jvn
jvn
JVN#48443978: a-blog cms vulnerable to directory traversal
2024-03-08 00:00:00
cvelist
cvelist
CVE-2024-27279
2024-03-12 08:19:48