Submit #580588: https://gitee.com/moonlightL https://gitee.com/moonlightL/hexo-boot hexo-boot-4.3.0 Improper Neutralization of Alternate XSS Syntaxinfo

Titelhttps://gitee.com/moonlightL https://gitee.com/moonlightL/hexo-boot hexo-boot-4.3.0 Improper Neutralization of Alternate XSS Syntax
BeschreibungThe hexo-boot-4.3.0 blog backend has an XSS vulnerability. Attackers can construct payloads to bypass filtering, achieve XSS pop-ups, and cause the leakage of victims' privacy and cookies.
Quelle⚠️ https://github.com/trengh222/hexo-boot-xss2.0
Benutzer
 trengh (UID 85464)
Einreichung19.05.2025 10:41 (vor 1 Jahr)
Moderieren20.05.2025 15:49 (1 day later)
StatusAkzeptiert
VulDB Eintrag309664 [moonlightL hexo-boot 4.3.0 Dynamic List Page /admin/home/index.html Cross Site Scripting]
Punkte16

ZurückÜbersichtWeiter

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!