CVE-2024-25167
CVE-2024-25167 affects the eblog v1.0 project. A cross-site scripting (XSS) flaw exists in the description parameter of the comment submission endpoint, allowing a remote attacker to execute arbitrary code. Affected component: the comment submission path handling the description field. Impact: ar...