VYPR

Easy Blog for EC-CUBE4

by Ec Cube Co.,ltd.

CVEs (1)

  • CVE-2022-27174MedJun 13, 2022
    risk 0.28cvss 4.3epss 0.00

    Cross-site request forgery (CSRF) vulnerability in Easy Blog for EC-CUBE4 Ver.1.0.1 and earlier allows a remote unauthenticated attacker to hijack the authentication of the administrator and delete a blog article or a category via a specially crafted page.