Lucene search
PRIOn knowledge basePRION:CVE-2024-23782HistoryJan 28, 2024 - 11:15 p.m.
Cross site scripting
2024-01-2823:15:00
PRIOn knowledge base
www.prio-n.com
4
cross-site scripting
a-blog cms
vulnerability
web browser
arbitrary script
privilege escalation
Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier versions. If this vulnerability is exploited, a user with a contributor or higher privilege may execute an arbitrary script on the web browser of the user who accessed the website using the product.
| CPE | Name | Operator | Version |
|---|---|---|---|
| a-blog_cms | ge | 2.11.0 | |
| a-blog_cms | lt | 2.11.58 | |
| a-blog_cms | ge | 3.1.0 | |
| a-blog_cms | lt | 3.1.7 | |
| a-blog_cms | ge | 3.0.0 | |
| a-blog_cms | lt | 3.0.29 | |
| a-blog_cms | lt | 2.10.50 |
Related
cve
cve
CVE-2024-23782
2024-01-28 23:15:58
cvelist
cvelist
CVE-2024-23782
2024-01-28 23:09:13
nvd
nvd
CVE-2024-23782
2024-01-28 23:15:58
jvn
jvn
JVN#34565930: Multiple vulnerabilities in a-blog cms
2024-01-22 00:00:00