Known Vulnerabilities for Amasty Blog Pro by Amasty
Listed below are 1 of the newest known vulnerabilities associated with "Amasty Blog Pro" by "Amasty".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-36433 json | The blog-post creation functionality in the Amasty Blog Pro 2.10.3 plugin for Magento 2 allows injection of JavaScript code i... | 6.1 - MEDIUM | 2022-11-29 | 2022-12-01 |
| CVE-2022-35501 json | Stored Cross-site Scripting (XSS) exists in the Amasty Blog Pro 2.10.3 and 2.10.4 plugin for Magento 2 because of the duplica... | 6.1 - MEDIUM | 2022-11-23 | 2026-07-05 |
| CVE-2022-35500 json | Amasty Blog 2.10.3 is vulnerable to Cross Site Scripting (XSS) via leave comment functionality. | 6.1 - MEDIUM | 2022-11-23 | 2026-07-05 |