CVE Vulnerabilities

CVE-2023-22858

Published: Mar 06, 2023 | Modified: Mar 13, 2023
CVSS 3.x
5.3
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

An Improper Access Control vulnerability in BlogEngine.NET 3.3.8.0, allows unauthenticated visitors to access the files of unpublished blogs.

Affected Software

Name Vendor Start Version End Version
Blogengine.net Blogengine 3.3.8.0 (including) 3.3.8.0 (including)

References