CVE-2025-5010 Information
May 22, 2025
cve
Description
A vulnerability classified as problematic has been found in moonlightL hexo-boot 4.3.0. This affects an unknown part of the file /admin/home/index.html of the component Blog Backend. The manipulation of the argument Description leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
Reference
https://github.com/trengh222/hexo-boot-xss1.0/blob/yhtt/README.md https://github.com/trengh222/hexo-boot-xss1.0/blob/yhtt/README.md https://vuldb.com/?ctiid.309663 https://vuldb.com/?id.309663 https://vuldb.com/?submit.580567
Share on: