CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Blogcms: Security Vulnerabilities

CVE-2010-4749

Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS 4.2.1.e, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) body parameter to action.php and the (2) amount and (3) action parameters to admin/index.php.

CVSS Score

4.3

EPSS Score

0.053

Published

2011-03-01

CVE-2010-4750

Cross-site request forgery (CSRF) vulnerability in admin/libs/ADMIN.php in BLOG:CMS 4.2.1.e, and possibly earlier, allows remote attackers to hijack the authentication of administrators.

CVSS Score

6.8

EPSS Score

0.002

Published

2011-03-01

Page 1

Vulnerabilities

Vulnerable Software

Blogcms: Security Vulnerabilities

Products

Pricing

Contact Us