Vulnerabilities

CVE-2025-31103

by Fred · 31/03/2025

Untrusted data deserialization vulnerability exists in a-blog cms. Processing a specially crafted request may store arbitrary files on the server where the product is running. This can be leveraged to execute an arbitrary script on the server.

Assigner : vultures@jpcert.or.jp

More information : https://developer.a-blogcms.jp/blog/news/entry-4197.html

Similar

Tags: Cybersecurity Alert