3 matches found
appleple a-blog cms 路径遍历漏洞
appleple a-blog cms is a content management system from appleple. A path traversal vulnerability exists in appleple a-blog cms versions prior to 3.1.43, which stems from insufficient path validation of the backup function, and could lead to a path traversal attack...
CVE-2016-1179
Cross-site scripting XSS vulnerability in the standard template of the comment functionality in appleple a-blog cms 2.6.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML...
appleple a-blog cms unauthorized operation vulnerability
appleple a-blog cms is a content management system CMS from appleple Japan. A security vulnerability exists in the session management of the comment feature in appleple a-blog cms 2.6.0.1 and earlier versions. A remote attacker can exploit this vulnerability to delete arbitrary comments or obtain...