Unrated severityNVD Advisory· Published Jan 23, 2024· Updated Jun 4, 2025
CVE-2024-23180
CVE-2024-23180
Description
Improper input validation vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticated attacker to execute arbitrary code by uploading a specially crafted SVG file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6- appleple inc./a-blog cmsv5Range: Ver.2.9.0 and earlier
- appleple inc./a-blog cms Ver.2.10.x seriesv5Range: prior to Ver.2.10.50
- appleple inc./a-blog cms Ver.2.11.x seriesv5Range: prior to Ver.2.11.58
- appleple inc./a-blog cms Ver.3.0.x seriesv5Range: prior to Ver.3.0.29
- appleple inc./a-blog cms Ver.3.1.x seriesv5Range: prior to Ver.3.1.7
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.