CVE-2024-25865 Information

Description

Cross Site Scripting (XSS) vulnerability in hexo-theme-anzhiyu v1.6.12 allows remote attackers to execute arbitrary code via the algolia search function.

Reference

https://github.com/anzhiyu-c/hexo-theme-anzhiyu/issues/200