mblog <=3.5.0 Stored XSS정보

제목	mtons https://gitee.com/mtons/mblog <=3.5.0 Stored XSS
설명	The /settings/profile endpoint is used for editing user profile information, the user-controlled bio content parameter has no security checks, and has no encoding processing during output, thus creating stored XSS vulnerabilities.
원천	⚠️ https://gitee.com/mtons/mblog/issues/ICPML3
사용자	ZAST.AI (UID 87884)
제출	2025. 08. 13. PM 02:06 (9 개월 ago)
모더레이션	2025. 08. 25. AM 08:18 (12 days later)
상태	수락
VulDB 항목	321245 [mtons mblog 까지 3.5.0 /settings/profile signature 크로스 사이트 스크립팅]
포인트들	17

Might our Artificial Intelligence support you?

Check our Alexa App!