Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote unauthenticated attacker to execute an arbitrary script on the logged-in user's web browser.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published: 2024-01-23T09:38:08.211Z

Updated: 2024-08-01T22:59:32.204Z

Reserved: 2024-01-12T05:24:51.969Z

Link: CVE-2024-23181

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2024-01-23T10:15:10.493

Modified: 2024-11-21T08:57:08.347

Link: CVE-2024-23181

cve-icon Redhat

No data.