{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-17T06:23:05.074","vulnerabilities":[{"cve":{"id":"CVE-2024-25559","sourceIdentifier":"vultures@jpcert.or.jp","published":"2024-02-15T05:15:10.870","lastModified":"2025-05-13T15:12:52.413","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"URL spoofing vulnerability exists in a-blog cms Ver.3.1.0 to Ver.3.1.8. If an attacker sends a specially crafted request, the administrator of the product may be forced to access an arbitrary website when clicking a link in the audit log."},{"lang":"es","value":"Existe una vulnerabilidad de suplantación de URL en a-blog cms Ver.3.1.0 a Ver.3.1.8. Si un atacante envía una solicitud especialmente manipulada, el administrador del producto puede verse obligado a acceder a un sitio web arbitrario al hacer clic en un enlace del registro de auditoría."}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N","baseScore":4.7,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-601"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:appleple:a-blog_cms:*:*:*:*:*:*:*:*","versionStartIncluding":"3.1.0","versionEndIncluding":"3.1.8","matchCriteriaId":"EC8BCA56-5D76-4878-A297-55061CB7516B"}]}]}],"references":[{"url":"https://developer.a-blogcms.jp/blog/news/JVN-48966481.html","source":"vultures@jpcert.or.jp","tags":["Vendor Advisory"]},{"url":"https://jvn.jp/en/jp/JVN48966481/","source":"vultures@jpcert.or.jp","tags":["Third Party Advisory"]},{"url":"https://developer.a-blogcms.jp/blog/news/JVN-48966481.html","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://jvn.jp/en/jp/JVN48966481/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}