DevBlog is a blog project developed using Node.js (Express) and MongoDB by Arman Idrisi, an individual developer. A cross-site scripting vulnerability exists in DevBlog v1.0, which stems from the application’s lack of valid validation of uploaded files and can be exploited by an attacker to upload malicious HTML files.
CPE | Name | Operator | Version |
---|---|---|---|
arman idrisi devblog v | eq | 1.0 |