Blogengine: >> Blogengine.net >> 3.3 Security Vulnerabilities
An Unrestricted Upload vulnerability, due to insufficient validation on UploadControlled.cs file, in BlogEngine.Net version 3.3.8.0 and earlier allows remote attackers to execute remote code.
CVSS Score
9.8
EPSS Score
0.843
Published
2023-06-26
Blogengine.net 3.3.8.0 and earlier is vulnerable to Open Redirect.
CVSS Score
6.1
EPSS Score
0.493
Published
2023-06-21
BlogEngine.NET 3.3.7.0 and earlier allows Directory Traversal and Remote Code Execution via the theme cookie to the File Manager. NOTE: this issue exists because of an incomplete fix for CVE-2019-6714.
CVSS Score
8.8
EPSS Score
0.067
Published
2019-06-21
BlogEngine.NET 3.3 allows XXE attacks via the POST body to metaweblog.axd.
CVSS Score
9.8
EPSS Score
0.217
Published
2019-05-07
An issue was discovered in BlogEngine.NET through 3.3.6.0. A path traversal and Local File Inclusion vulnerability in PostList.ascx.cs can cause unauthenticated users to load a PostView.ascx component from a potentially untrusted location on the local filesystem. This is especially dangerous if an authenticated user uploads a PostView.ascx file using the file manager utility, which is currently allowed. This results in remote code execution for an authenticated user.
CVSS Score
9.8
EPSS Score
0.243
Published
2019-03-21