Vulnerabilities > Blogengine > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-19 | CVE-2022-41418 | Path Traversal vulnerability in Blogengine Blogengine.Net 3.3.8.0 An issue in the component BlogEngine/BlogEngine.NET/AppCode/Api/UploadController.cs of BlogEngine.NET v3.3.8.0 allows attackers to execute arbitrary code via uploading a crafted PNG file. | 7.2 |
| 2019-06-21 | CVE-2019-10720 | Path Traversal vulnerability in Blogengine Blogengine.Net BlogEngine.NET 3.3.7.0 and earlier allows Directory Traversal and Remote Code Execution via the theme cookie to the File Manager. | 8.8 |