Skip to main content

Alma Blog

3 CVEs product

Monthly

CVE-2024-1146 MEDIUM This Month

Cross-Site Scripting vulnerability in Devklan's Alma Blog that affects versions 2.1.10 and earlier. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Alma Blog
NVD
CVSS 3.1
6.1
EPSS
0.3%
CVE-2024-1145 MEDIUM This Month

User enumeration vulnerability in Devklan's Alma Blog that affects versions 2.1.10 and earlier. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Alma Blog
NVD
CVSS 3.1
5.3
EPSS
0.5%
CVE-2024-1144 MEDIUM This Month

Improper access control vulnerability in Devklan's Alma Blog that affects versions 2.1.10 and earlier. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Alma Blog
NVD
CVSS 3.1
6.5
EPSS
0.3%
EPSS 0% CVSS 6.1
MEDIUM This Month

Cross-Site Scripting vulnerability in Devklan's Alma Blog that affects versions 2.1.10 and earlier. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Alma Blog
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

User enumeration vulnerability in Devklan's Alma Blog that affects versions 2.1.10 and earlier. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Alma Blog
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

Improper access control vulnerability in Devklan's Alma Blog that affects versions 2.1.10 and earlier. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Alma Blog
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy