EPSS
Percentile
46.3%
The Post editor functionality in the hexo-admin plugin versions 2.3.0 and earlier for Node.js is vulnerable to stored XSS via the content of a post.
github.com/418sec/hexo-admin/pull/2
github.com/jaredly/hexo-admin
github.com/jaredly/hexo-admin/issues/185
github.com/jaredly/hexo-admin/pull/203
nvd.nist.gov/vuln/detail/CVE-2019-17606