Blogcms : Security Vulnerabilities, CVEs,
Cross-site request forgery (CSRF) vulnerability in admin/libs/ADMIN.php in BLOG:CMS 4.2.1.e, and possibly earlier, allows remote attackers to hijack the authentication of administrators.
Max CVSS
6.8
EPSS Score
0.39%
Published
2011-03-01
Updated
2011-09-22
Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS 4.2.1.e, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) body parameter to action.php and the (2) amount and (3) action parameters to admin/index.php.
Max CVSS
4.3
EPSS Score
1.07%
Published
2011-03-01
Updated
2011-09-22
2 vulnerabilities found