This page aggregates publicly disclosed CVE and security risk information related to blog-ssm_project, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-40036 | An issue was discovered in Rawchen blog-ssm v1.0 allows an attacker to obtain sensitive user information by bypassing permission checks via the /adminGetUserList component. | [email protected] | 6.5 | 0.74% | 2023-01-26 | 2026-06-17 |
| CVE-2022-40035 | File Upload Vulnerability found in Rawchen Blog-ssm v1.0 allowing attackers to execute arbitrary commands and gain escalated privileges via the /uploadFileList component. | [email protected] | 8.8 | 1.22% | 2023-01-26 | 2026-06-17 |