Lucene search
BlogengineBlogengine.net
2 matches found
CVE-2022-28921
A Cross-Site Request Forgery (CSRF) vulnerability discovered in BlogEngine.Net v3.3.8.0 allows unauthenticated attackers to read arbitrary files on the hosting web server.
6.5CVSS6.5AI score0.00196EPSS
CVE-2023-33405
Blogengine.net 3.3.8.0 and earlier is vulnerable to Open Redirect.
6.1CVSS6.2AI score0.49268EPSS