Lucene search
JpcertCVELIST:CVE-2022-24374HistoryFeb 24, 2022 - 9:50 a.m.
CVE-2022-24374
2022-02-2409:50:32
jpcert
www.cve.org
2
cve-2022-24374
cross-site scripting
remote attacker
Cross-site scripting vulnerability in a-blog cms Ver.2.8.x series versions prior to Ver.2.8.75, Ver.2.9.x series versions prior to Ver.2.9.40, Ver.2.10.x series versions prior to Ver.2.10.44, Ver.2.11.x series versions prior to Ver.2.11.42, and Ver.3.0.x series versions prior to Ver.3.0.1 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. This vulnerability is different from CVE-2022-23916.
CNA Affected
[
{
"product": "a-blog cms",
"vendor": "appleple inc.",
"versions": [
{
"status": "affected",
"version": "Ver.2.8.x series versions prior to Ver.2.8.75, Ver.2.9.x series versions prior to Ver.2.9.40, Ver.2.10.x series versions prior to Ver.2.10.44, Ver.2.11.x series versions prior to Ver.2.11.42, and Ver.3.0.x series versions prior to Ver.3.0.1"
}
]
}
]Related
nvd
nvd
CVE-2022-24374
2022-02-24 15:15:29
CVE-2022-23916
2022-02-24 15:15:28
cvelist
cvelist
CVE-2022-23916
2022-02-24 09:50:30
cve
cve
CVE-2022-23916
2022-02-24 15:15:28
CVE-2022-24374
2022-02-24 15:15:29
prion
prion
Cross site scripting
2022-02-24 15:15:00
Cross site scripting
2022-02-24 15:15:00
jvn
jvn
JVN#14706307: Multiple vulnerabilities in a-blog cms
2022-02-18 00:00:00