Code injection vulnerability exists in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.12 and Ver.3.0.x series versions prior to Ver.3.0.32. If this vulnerability is exploited, a user with an administrator or higher privilege who can log in to the product may execute an arbitrary command on the server.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published: 2024-05-22T04:35:42.765Z

Updated: 2024-08-02T01:52:56.923Z

Reserved: 2024-04-03T08:01:33.449Z

Link: CVE-2024-31396

cve-icon Vulnrichment

Updated: 2024-05-22T17:43:01.267Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-22T05:15:53.183

Modified: 2024-11-21T09:13:26.830

Link: CVE-2024-31396

cve-icon Redhat

No data.