CNNVD-202508-1672 Information

CNNVD ID

CNNVD-202508-1672

Related CVE

CVE-2025-53631

• CNNVD Published: 2025-08-14

Description (Chinese)

FlaskBlog是Doğukan Ürker个人开发者的一个使用 Flask 构建的简单博客应用程序。 flaskBlog 2.8.1及之前版本存在跨站脚本漏洞，该漏洞源于postContent清理不当，可能导致任意JavaScript执行。

Description (English)

FluskBlog is a simple blog application by Doğukan Ürker’s personal developer using the Flash. FlaskBlog 2.8.1 and previous versions had a cross-site script loophole, which stemmed from the inappropriate cleaning of the postContent, which could lead to arbitrary JavaScript implementation.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

个人开发者

Published

2025-08-14

Last Modified

2026-02-24

References

https://github.com/DogukanUrker/flaskBlog/security/advisories/GHSA-cj43-h8qf-7rw7 https://nvd.nist.gov/vuln/detail/CVE-2025-53631