Lucene search
Veracode Vulnerability DatabaseVERACODE:33140HistoryDec 01, 2021 - 8:54 a.m.
Cross-site Scripting (XSS)
2021-12-0108:54:58
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
cross-site scripting
xss
hexo software
EPSS
0
Percentile
12.6%
hexo is vulnerable to cross-site scripting. The attack exists due to insufficient sanitations in the html tag and body values allowing local unauthenticated attackers to inject and execute arbitrary javascript in victim’s browser.
Related
prion
prion
Cross site scripting
2021-11-30 14:15:00
nvd
nvd
CVE-2021-25987
2021-11-30 14:15:07
cnvd
cnvd
Hexo cross-site scripting vulnerability
2021-12-01 00:00:00
cvelist
cvelist
CVE-2021-25987 Hexo - Stored XSS
2021-11-30 13:50:09
osv
osv
Hexo Vulnerable to XSS
2021-12-01 18:27:44
github
github
Hexo Vulnerable to XSS
2021-12-01 18:27:44
cve
cve
CVE-2021-25987
2021-11-30 14:15:07