Blogengine: Security Vulnerabilities
BlogEngine.NET 3.3.7.0 and earlier allows Directory Traversal and Remote Code Execution via the theme cookie to the File Manager. NOTE: this issue exists because of an incomplete fix for CVE-2019-6714.
CVSS Score
8.8
EPSS Score
0.067
Published
2019-06-21
BlogEngine.NET 3.3 allows XXE attacks via the POST body to metaweblog.axd.
CVSS Score
9.8
EPSS Score
0.217
Published
2019-05-07
An issue was discovered in BlogEngine.NET through 3.3.6.0. A path traversal and Local File Inclusion vulnerability in PostList.ascx.cs can cause unauthenticated users to load a PostView.ascx component from a potentially untrusted location on the local filesystem. This is especially dangerous if an authenticated user uploads a PostView.ascx file using the file manager utility, which is currently allowed. This results in remote code execution for an authenticated user.
CVSS Score
9.8
EPSS Score
0.243
Published
2019-03-21
SQL injection vulnerability in E2 before 2.4 (2845) allows remote attackers to execute arbitrary SQL commands via the note-id parameter to @actions/comment-process.
CVSS Score
7.5
EPSS Score
0.009
Published
2014-07-24
Page 2