Unrated severityNVD Advisory· Published Mar 28, 2024· Updated Aug 27, 2024
CVE-2024-28713
CVE-2024-28713
Description
An issue in Mblog Blog system v.3.5.0 allows an attacker to execute arbitrary code via a crafted file to the theme management feature.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Mblog/Blog systemdescription
- Range: = 3.5.0
Patches
Vulnerability mechanics
References
7- mblog.commitre
- github.com/JiangXiaoBaiJia/cve/blob/main/%E5%9B%BE%E7%89%871.pngmitre
- github.com/JiangXiaoBaiJia/cve/blob/main/%E5%9B%BE%E7%89%872.pngmitre
- github.com/JiangXiaoBaiJia/cve/blob/main/%E5%9B%BE%E7%89%873.pngmitre
- github.com/JiangXiaoBaiJia/cve/blob/main/%E5%9B%BE%E7%89%874.pngmitre
- github.com/JiangXiaoBaiJia/cve/blob/main/%E5%9B%BE%E7%89%875.pngmitre
- github.com/JiangXiaoBaiJia/cve/blob/main/Mblog%20blog%20system%20has%20SSTI%20template%20injection%20vulnerability.mdmitre
News mentions
0No linked articles in our index yet.