Improper input validation vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and previous versions allows a remote authenticated malicious user to execute arbitrary code by uploading a specially crafted SVG file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
appleple a-blog cms |