CVE-2025-41429

Publication date

2025-05-19 08:07:38

Family

jpcert

State

PUBLISHED

Description

a-blog cms multiple versions neutralize logs improperly. If this vulnerability is exploited with CVE-2025-36560, a remote unauthenticated attacker may hijack a legitimate users session.