2 matches found
CVE-2025-5011
CVE-2025-5011 affects moonlightL hexo-boot 4.3.0. The issue resides in the Dynamic List Page’s /admin/home/index.html, enabling cross-site scripting that can be exploited remotely. Exploit has been disclosed publicly and multiple feeds cite a range of CVSS-like assessments (3.1/4.0 variants) with...
CVE-2025-5010
CVE-2025-5010 – affected software and impact : The vulnerability is in moonlightL hexo-boot 4.3.0, specifically within the Blog Backend component, affecting the file path /admin/home/index.html. The issue arises from manipulation of the Description argument, which leads to cross-site scripting (X...