Cross-site scripting vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticated attacker to execute an arbitrary script on the logged-in user's web browser.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2024-01-23T09:39:05.114Z
Updated: 2024-08-01T22:59:31.779Z
Reserved: 2024-01-12T05:24:51.969Z
Link: CVE-2024-23183
Vulnrichment
No data.
NVD
Status : Modified
Published: 2024-01-23T10:15:10.590
Modified: 2024-11-21T08:57:08.607
Link: CVE-2024-23183
Redhat
No data.