Submit #580567: https://gitee.com/moonlightL https://gitee.com/moonlightL/hexo-boot hexo-boot-4.3.0 Improper Neutralization of Alternate XSS Syntaxinfo

Titlehttps://gitee.com/moonlightL https://gitee.com/moonlightL/hexo-boot hexo-boot-4.3.0 Improper Neutralization of Alternate XSS Syntax
DescriptionThe hexo-boot-4.3.0 blog backend has an XSS vulnerability. Attackers can construct payloads to bypass filtering, achieve XSS pop-ups, and cause the leakage of victims' privacy and cookies.
Source⚠️ https://github.com/trengh222/hexo-boot-xss1.0/blob/yhtt/README.md
User
 trengh (UID 85464)
Submission05/19/2025 10:23 (1 Year ago)
Moderation05/20/2025 15:49 (1 day later)
StatusAccepted
VulDB entry309663 [moonlightL hexo-boot 4.3.0 Blog Backend /admin/home/index.html Description cross site scripting]
Points16

PreviousOverviewNext

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!