VYPR
Unrated severityNVD Advisory· Published May 19, 2025· Updated May 19, 2025

CVE-2025-32999

CVE-2025-32999

Description

Cross-site scripting vulnerability exists in a-blog cms versions prior to Ver. 3.1.43 and prior to Ver. 3.0.47. This issue exists in a specific field in the entry editing screen, and exploitation requires contributor or higher level privileges. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is logging in to the product.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • A Blog/A Blogllm-fuzzy
    Range: <3.1.43 | <3.0.47
  • appleple inc./a-blog cmsv5
    Range: prior to Ver. 3.0.47 (Ver. 3.0.x series)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.