CVE 2016-1178
The session management of the comment functionality in appleple a-blog cms 2.6.0.1 and earlier allows remote attackers to obtain or modify sensitive data via unspecified vectors.
See the
CVE page on Mitre.org
for more details.