CVE-2023-29639

Published: 2023-05-01T16:15Z

Last Modified: 2025-01-30T19:15Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Cross site scripting (XSS) vulnerability in ZHENFENG13 My-Blog, allows attackers to inject arbitrary web script or HTML via editing an article in the "blog article" page due to the default configuration not utilizing MyBlogUtils.cleanString. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt