CNNVD-202508-3142 Information
Aug 26, 2025
cve
CNNVD ID
CNNVD-202508-3142
Related CVE
- CNNVD Published: 2025-08-26
Description (Chinese)
mblog是langhsu个人开发者的一个博客系统。 mblog 3.5.0及之前版本存在安全漏洞,该漏洞源于对文件/admin/user/list中参数Name的错误操作导致跨站脚本攻击。
Description (English)
Mblog is a blog system for the langhsu personal developers. There is a security loophole in mblog 3.5.0 and previous versions, which results from an error of action on the parameter name in the file/admin/user/list that resulted in a cross-site script attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2025-08-26
Last Modified
2026-02-24
References
https://vuldb.com/?submit.634169 https://vuldb.com/?id.321274 https://vuldb.com/?ctiid.321274 https://gitee.com/mtons/mblog/issues/ICPMMW https://nvd.nist.gov/vuln/detail/CVE-2025-9433
Share on: