Lucene search
+L

266 matches found

Positive Technologies
Positive Technologies
added 2024/02/14 12:0 a.m.17 views

PT-2024-21003 · Unknown · A-Blog Cms

Name of the Vulnerable Software and Affected Versions: a-blog cms versions 3.1.0 through 3.1.8 Description: A URL spoofing issue exists, allowing an attacker to force the administrator to access an arbitrary website when clicking a link in the audit log by sending a specially crafted request...

4.7CVSS6.2AI score0.00448EPSS
Exploits0References6
NVD
NVD
added 2024/01/28 11:15 p.m.27 views

CVE-2024-23782

Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier versions. If this...

5.4CVSS5.5AI score0.00298EPSS
Exploits0References2
Prion
Prion
added 2024/01/28 11:15 p.m.17 views

Cross site scripting

Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier versions. If this...

4.9CVSS6.9AI score0.00298EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/28 11:9 p.m.7 views

CVE-2024-23782

Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier versions. If this...

5.6AI score0.00298EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/01/28 11:9 p.m.32 views

CVE-2024-23782

Cross-site scripting vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier versions. If this...

6.5AI score0.00298EPSS
Exploits0References2
CVE
CVE
added 2024/01/28 11:9 p.m.57 views

CVE-2024-23782

CVE-2024-23782 is a cross-site scripting vulnerability in a-blog cms affecting: 3.1.x before 3.1.7; 3.0.x before 3.0.29; 2.11.x before 2.11.58; 2.10.x before 2.10.50; and 2.9.0 and earlier. An attacker with contributor or higher privileges can cause arbitrary script execution in a user’s browser....

5.4CVSS6.2AI score0.00298EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/01/28 12:0 a.m.5 views

a-blog cms security breach

a-blog cms is a Japanese content management system CMS. A security vulnerability exists in a-blog cms that originates from a user with Contributor or higher privileges being able to execute arbitrary scripts on the user's web browser. The following products and versions are affected: a-blog cms...

5.4CVSS7.2AI score0.00298EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/01/28 12:0 a.m.7 views

PT-2024-20081 · Unknown · A-Blog Cms

Name of the Vulnerable Software and Affected Versions: a-blog cms versions prior to 3.1.7 a-blog cms versions prior to 3.0.29 a-blog cms versions prior to 2.11.58 a-blog cms versions prior to 2.10.50 a-blog cms version 2.9.0 and earlier Description: A cross-site scripting vulnerability exists in...

5.4CVSS5.4AI score0.00298EPSS
Exploits0References8
OSV
OSV
added 2024/01/23 10:15 a.m.4 views

CVE-2024-23181

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote unauthenticated...

6.1CVSS6.6AI score0.00411EPSS
Exploits0References2
NVD
NVD
added 2024/01/23 10:15 a.m.17 views

CVE-2024-23348

Improper input validation vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote...

8.8CVSS8.5AI score0.0069EPSS
Exploits0References2
NVD
NVD
added 2024/01/23 10:15 a.m.22 views

CVE-2024-23183

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticated...

5.4CVSS5.4AI score0.00361EPSS
Exploits0References2
NVD
NVD
added 2024/01/23 10:15 a.m.23 views

CVE-2024-23181

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote unauthenticated...

6.1CVSS6.3AI score0.00411EPSS
Exploits0References2
OSV
OSV
added 2024/01/23 10:15 a.m.6 views

CVE-2024-23183

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticated...

5.4CVSS6AI score0.00361EPSS
Exploits0References2
NVD
NVD
added 2024/01/23 10:15 a.m.17 views

CVE-2024-23180

Improper input validation vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote...

8.8CVSS8.7AI score0.00918EPSS
Exploits0References2
OSV
OSV
added 2024/01/23 10:15 a.m.4 views

CVE-2024-23348

Improper input validation vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote...

8.8CVSS6.6AI score0.0069EPSS
Exploits0References2
Prion
Prion
added 2024/01/23 10:15 a.m.16 views

Path traversal

Relative path traversal vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticate...

5.5CVSS6.9AI score0.00749EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2024/01/23 10:15 a.m.17 views

Cross site scripting

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote unauthenticated...

5.8CVSS7.2AI score0.00411EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2024/01/23 10:15 a.m.16 views

Input validation

Improper input validation vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote...

6.5CVSS7.5AI score0.0069EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2024/01/23 10:15 a.m.16 views

Input validation

Improper input validation vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote...

6.5CVSS7.8AI score0.00918EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2024/01/23 10:15 a.m.19 views

Cross site scripting

Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticated...

4.9CVSS6.7AI score0.00361EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder