3 matches found
CVE-2022-37679
Miniblog.Core v1.0 was discovered to contain a cross-site scripting XSS vulnerability in the component /blog/edit. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Excerpt field...
CVE-2022-37679
Miniblog.Core v1.0 was discovered to contain a cross-site scripting XSS vulnerability in the component /blog/edit. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Excerpt field...
CVE-2022-37679
CVE-2022-37679 affects Miniblog.Core v1.0 in the /blog/edit Excerpt field, enabling cross-site scripting via a crafted payload. Root cause is an XSS vulnerability in the Excerpt input; impact per the entry is execute arbitrary script/HTML in the client. CVSS v3.1 base score is 4.8 (Medium) with n...