Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blogengine blogengine.net vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-41417
BlogEngine.NET v3.3.8.0 allows an malicious user to create any folder with "files" prefix under ~/App_Data/.
Blogengine Blogengine.net 3.3.8.0
NA
CVE-2022-41418
An issue in the component BlogEngine/BlogEngine.NET/AppCode/Api/UploadController.cs of BlogEngine.NET v3.3.8.0 allows malicious users to execute arbitrary code via uploading a crafted PNG file.
Blogengine Blogengine.net 3.3.8.0
NA
CVE-2023-22858
An Improper Access Control vulnerability in BlogEngine.NET 3.3.8.0, allows unauthenticated visitors to access the files of unpublished blogs.
Blogengine Blogengine.net 3.3.8.0
5.8
CVSSv2
CVE-2019-10721
BlogEngine.NET 3.3.7.0 allows a Client Side URL Redirect via the ReturnUrl parameter, related to BlogEngine/BlogEngine.Core/Services/Security/Security.cs, login.aspx, and register.aspx.
Dotnetblogengine Blogengine.net 3.3.7.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2