CVE-2023-49967 Information

Description

Typecho v1.2.1 was discovered to be vulnerable to an XML Quadratic Blowup attack via the component /index.php/action/xmlrpc.

Reference

https://github.com/typecho/typecho/issues/1648