CNNVD-202601-3078 Information

CNNVD ID

CNNVD-202601-3078

Related CVE

CVE-2026-1136

• CNNVD Published: 2026-01-19

Description (Chinese)

BootDo是lcg0124个人开发者的一个后台管理系统框架。 lcg0124 BootDo存在代码注入漏洞，该漏洞源于对文件/blog/bContent/save中参数content/author/title的错误操作，可能导致跨站脚本攻击。

Description (English)

Bootdo is a back-office management system framework for lcg0124 individual developers. lcg0124 Bootdo has a code infusion loophole, which results from a wrong operation of the parameter in file/blog/bContent/save content/author/title, which may result in a cross-site script attack.

Hazard Level

Critical

Vulnerability Type

代码注入

Affected Vendor

个人开发者

Published

2026-01-19

Last Modified

2026-02-24

References

https://github.com/webzzaa/CVE-/issues/4 https://vuldb.com/?ctiid.341726 https://vuldb.com/?id.341726 https://vuldb.com/?submit.735164