Vulnerabilities

CVE-2024-25559

by Fred · 15/02/2024

URL spoofing vulnerability exists in a-blog cms Ver.3.1.0 to Ver.3.1.8. If an attacker sends a specially crafted request, the administrator of the product may be forced to access an arbitrary website when clicking a link in the audit log.

More information : https://developer.a-blogcms.jp/blog/news/JVN-48966481.html

Similar

Tags: Cybersecurity Alert