CNNVD-202508-3147 Information
Aug 26, 2025
cve
CNNVD ID
CNNVD-202508-3147
Related CVE
- CNNVD Published: 2025-08-26
Description (Chinese)
mblog是langhsu个人开发者的一个博客系统。 mblog 3.5.0及之前版本存在安全漏洞,该漏洞源于对文件/post/submit中参数content/title的错误操作导致跨站脚本攻击。
Description (English)
Mblog is a blog system for the langhsu personal developers. mblog 3.5.0 and previous versions contained a security loophole, which resulted from an error in the use of the parameter in document/post/submit that resulted in a cross-site script attack.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2025-08-26
Last Modified
2026-02-24
References
https://vuldb.com/?submit.634155 https://vuldb.com/?submit.634153 https://vuldb.com/?id.321270 https://vuldb.com/?ctiid.321270 https://gitee.com/mtons/mblog/issues/ICPMLW https://gitee.com/mtons/mblog/issues/ICPMLJ https://nvd.nist.gov/vuln/detail/CVE-2025-9429
Share on: