3 matches found
CVE-2022-26619
Halo Blog CMS v1.4.17 was discovered to allow attackers to upload arbitrary files via the Attachment Upload function...
CVE-2022-26619
Halo Blog CMS v1.4.17 contains an authentication-free flaw in the Attachment Upload function that enables uploading arbitrary files. This is the concrete detail reported across multiple sources (CVE-2022-26619). The impact stated in the CVE record indicates partial integrity impact with the abili...
CVE-2022-26619
Halo Blog CMS v1.4.17 was discovered to allow attackers to upload arbitrary files via the Attachment Upload function...