2 matches found
CVE-2023-39639
LeoTheme leoblog up to v3.1.2 was discovered to contain a SQL injection vulnerability via the component LeoBlogBlog::getListBlogs...
CVE-2023-39639
CVE-2023-39639 affects LeoTheme leoblog up to v3.1.2. The vulnerability is a SQL injection in LeoBlogBlog::getListBlogs, enabling unauthorized access via crafted input. CVSS 3.1 base score 9.8 (NETWORK, LOW attack complexity, no privileges, no user interaction; confidentiality, integrity, and ava...