VYPR
← All advisories
Unrated severityNVD Advisory· Published Mar 31, 2025· Updated Mar 31, 2025

CVE-2025-31103

CVE-2025-31103

Description

Untrusted data deserialization vulnerability exists in a-blog cms. Processing a specially crafted request may store arbitrary files on the server where the product is running. This can be leveraged to execute an arbitrary script on the server.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • F Art Agency/BLOG:CMSllm-fuzzy
  • appleple inc./a-blog cms (Ver.2.10.x series)v5
    Range: prior to Ver.2.10.58
  • appleple inc./a-blog cms (Ver.2.11.x series)v5
    Range: prior to Ver.2.11.70
  • appleple inc./a-blog cms (Ver. 2.8.x series)v5
    Range: prior to Ver.2.8.80
  • appleple inc./a-blog cms (Ver.2.9.x series)v5
    Range: prior to Ver.2.9.46
  • appleple inc./a-blog cms (Ver.3.0.x series)v5
    Range: prior to Ver.3.0.41
  • appleple inc./a-blog cms (Ver.3.1.x series)v5
    Range: prior to Ver.3.1.37

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.