| 标题 | bolo-blog bolo-solo 2.6.4 Cross Site Scripting |
|---|
| 描述 | A vulnerability was found in bolo-blog bolo-solo up to 2.6.4. It has been classified as problematic. This affects the article creation functionality. The manipulation of the argument articleTitle leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public.
|
|---|
| 来源 | ⚠️ https://github.com/bolo-blog/bolo-solo/issues/330 |
|---|
| 用户 | Lastxuan (UID 96269) |
|---|
| 提交 | 2026-03-09 12時37分 (20 日前) |
|---|
| 管理 | 2026-03-23 06時53分 (14 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 352480 [bolo-blog 直到 2.6.4 Article Title /console/article/ articleTitle 跨网站脚本] |
|---|
| 积分 | 19 |
|---|