Code injection vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.12 and Ver.3.0.x series versions prior to Ver.3.0.32. If this vulnerability is exploited, a user with an administrator or higher privilege who can log in to the product may execute an arbitrary command on the server.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2024-05-22T04:35:42.765Z
Updated: 2024-08-02T01:52:56.923Z
Reserved: 2024-04-03T08:01:33.449Z
Link: CVE-2024-31396
Vulnrichment
Updated: 2024-05-22T17:43:01.267Z
NVD
Status : Awaiting Analysis
Published: 2024-05-22T05:15:53.183
Modified: 2024-11-21T09:13:26.830
Link: CVE-2024-31396
Redhat
No data.