EUVD-2009-2288

Malware in sbrugna...

EUVD-2016-2283

Malware in sbrugna...

appleple a-blog cms 代码问题漏洞

appleple a-blog cms is a content management system from appleple, Inc. A code issue vulnerability exists in appleple a-blog cms, which stems from server-side request forgery and could lead to the acquisition of sensitive information...

appleple a-blog cms 跨站脚本漏洞

appleple a-blog cms is a content management system from appleple. A cross-site scripting vulnerability exists in appleple a-blog cms versions prior to 3.1.43, which stems from improper input neutralization and could lead to cross-site scripting attacks...

appleple a-blog cms 安全漏洞

appleple a-blog cms is a content management system from appleple, Inc. A security vulnerability exists in appleple a-blog cms, which stems from improper log cleaning and could allow a remote, unauthenticated attacker to hijack a legitimate user session...

appleple a-blog cms 路径遍历漏洞

appleple a-blog cms is a content management system from appleple. A path traversal vulnerability exists in appleple a-blog cms versions prior to 3.1.43, which stems from insufficient path validation of the backup function, and could lead to a path traversal attack...

appleple a-blog cms 代码问题漏洞

appleple a-blog cms is a content management system from appleple. A code issue vulnerability exists in versions of appleple a-blog cms prior to Ver.3.1.37, which stems from improper handling of deserialization of untrustworthy data, which could lead to the execution of arbitrary script...

JVN#48966481: a-blog cms vulnerable to URL spoofing

a-blog cms provided by appleple Inc. is a content management system CMS. a-blog cms contains an URL spoofing vulnerability CWE-451. Impact If an attacker sends a specially crafted request, the administrator of the product may be forced to access an arbitrary website when clicking a link in the...

JVN#34565930: Multiple vulnerabilities in a-blog cms

a-blog cms provided by appleple inc. contains multiple vulnerabilities listed below. Improper input validation CWE-20 - CVE-2024-23180 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N| Base Score: 3.5 CVSS v2| AV:N/AC:M/Au:S/C:N/I:P/A:N| Base Score: 3.5...

Appleple a-blog cms 跨站脚本漏洞

Appleple a-blog cms is a content management system CMS from appleple Appleple Japan. A cross-site scripting vulnerability exists in a-blog cms, which originates. The vulnerability exists because user-supplied data is not adequately processed. A remote user can trick a victim into following a...

Appleple a-blog cms 跨站脚本漏洞

Appleple a-blog cms is a content management system CMS from appleple Appleple Japan. The a-blog cms suffers from a cross-site scripting vulnerability that exists due to insufficient cleaning of user-supplied data. A remote user can trick a victim into clicking on a specially crafted link and...

Appleple a-blog cms 代码注入漏洞

Appleple a-blog cms is a content management system CMS from appleple Appleple Japan. A code injection vulnerability exists in Appleple a-blog cms, which is vulnerable due to a template injection issue. A remote user can obtain arbitrary files on the server. The vulnerability allows remote attacke...

Appleple a-blog cms 授权问题漏洞

Appleple a-blog cms is a content management system CMS from appleple Appleple Japan. The a-blog cms suffers from an authorization issue vulnerability that exists due to an error when processing authentication requests. A remote attacker could bypass the authentication process and gain unauthorize...

a-blog cms script injection vulnerability

appleple a-blog cms is a content management system CMS from appleple Japan. An injection vulnerability exists in appleple a-blog cms version 2.10.x before 2.10.23, version 2.9.x before 2.9.26, and version 2.8.x before 2.8.64. The vulnerability arises from a lack of proper validation of user input...

appleple a-blog cms cross-site scripting vulnerability (CNVD-2020-02706)

appleple a-blog cms is a content management system CMS from appleple Japan. A cross-site scripting vulnerability exists in appleple a-blog cms versions 2.10.x before 2.10.23, 2.9.x before 2.9.26, and 2.8.x before 2.8.64. The vulnerability stems from a lack of proper validation of client-side data...

Multiple vulnerabilities in a-blog cms

Overview a-blog cms provided by appleple inc. contains multiple vulnerabilities listed below. Reflected cross-site scripting CWE-79 - CVE-2019-6033 Script injection due to a flaw in processing cookie CWE-74 - CVE-2019-6034 Yuji Tounai of Mitsui Bussan Secure Directions, Inc. reported this...

CVE-2016-1178

The session management of the comment functionality in appleple a-blog cms 2.6.0.1 and earlier allows remote attackers to obtain or modify sensitive data via unspecified vectors...

CVE-2016-1179

Cross-site scripting XSS vulnerability in the standard template of the comment functionality in appleple a-blog cms 2.6.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML...

Cross site scripting

Cross-site scripting XSS vulnerability in the standard template of the comment functionality in appleple a-blog cms 2.6.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML...

CVE-2016-1178

The session management of the comment functionality in appleple a-blog cms 2.6.0.1 and earlier allows remote attackers to obtain or modify sensitive data via unspecified vectors...