Halo cross-site scripting vulnerability (CNVD-2021-37280)
Halo is a modern blog/CMS system. A cross-site scripting vulnerability exists in Halo version 1.1.3. A remote attacker can exploit this vulnerability to execute arbitrary code via the blog publishing component...