CVE-2021-27280 Information

Description

OS Command injection vulnerability in mblog 3.5.0 allows attackers to execute arbitrary code via crafted theme when it gets selected.

Reference

https://github.com/langhsu/mblog/ https://github.com/langhsu/mblog/issues/44