Unrated severityNVD Advisory· Published Jan 3, 2014· Updated Jun 17, 2026
CVE-2013-6953
CVE-2013-6953
Description
BlogEngine.NET 2.8.0.0 and earlier allows remote attackers to read usernames and password hashes via a request for the sioc.axd file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:dotnetblogengine:blogengine.net:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:dotnetblogengine:blogengine.net:*:*:*:*:*:*:*:*range: <=2.8
- cpe:2.3:a:dotnetblogengine:blogengine.net:1.4.5:*:*:*:*:*:*:*
- cpe:2.3:a:dotnetblogengine:blogengine.net:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:dotnetblogengine:blogengine.net:1.6:*:*:*:*:*:*:*
- cpe:2.3:a:dotnetblogengine:blogengine.net:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:dotnetblogengine:blogengine.net:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:dotnetblogengine:blogengine.net:2.6:*:*:*:*:*:*:*
- cpe:2.3:a:dotnetblogengine:blogengine.net:2.7:*:*:*:*:*:*:*
- Range: <=2.8.0.0
Patches
Vulnerability mechanics
References
1- www.kb.cert.org/vuls/id/553166nvdUS Government Resource
News mentions
0No linked articles in our index yet.