Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3
CVE-2024-1145
- EPSS 0.08%
- Veröffentlicht 19.03.2024 12:15:08
- Zuletzt bearbeitet 15.10.2025 18:04:19
User enumeration vulnerability in Devklan's Alma Blog that affects versions 2.1.10 and earlier. This vulnerability could allow a remote user to retrieve all valid users registered in the application just by looking at the request response.
6.1
CVE-2024-1146
- EPSS 0.09%
- Veröffentlicht 19.03.2024 12:15:08
- Zuletzt bearbeitet 15.10.2025 18:04:10
Cross-Site Scripting vulnerability in Devklan's Alma Blog that affects versions 2.1.10 and earlier. This vulnerability could allow an attacker to store a malicious JavaScript payload within the application by adding the payload to 'Community Descript...
6.5
CVE-2024-1144
- EPSS 0.16%
- Veröffentlicht 19.03.2024 12:15:07
- Zuletzt bearbeitet 15.10.2025 18:04:40
Improper access control vulnerability in Devklan's Alma Blog that affects versions 2.1.10 and earlier. This vulnerability could allow an unauthenticated user to access the application's functionalities without the need for credentials.
1