CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Appleple: >> A-Blog Cms >> 2.11.44 Security Vulnerabilities

CVE-2024-23348

Improper input validation vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticated attacker to execute arbitrary JavaScript code by uploading a specially crafted SVG file.

CVSS Score

8.8

EPSS Score

0.005

Published

2024-01-23

Page 2

Vulnerabilities

Vulnerable Software

Appleple: >> A-Blog Cms >> 2.11.44 Security Vulnerabilities

Products

Pricing

Contact Us