CVE-2025-41429 Information

Description

a-blog cms multiple versions neutralize logs improperly. If this vulnerability is exploited with CVE-2025-36560 a remote unauthenticated attacker may hijack a legitimate user’s session.

Reference

https://developer.a-blogcms.jp/blog/news/JVNVU-90760614.html https://jvn.jp/en/vu/JVNVU90760614/