Filtered by vendor Zhenfeng13 My-blog Project Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-29639 1 Zhenfeng13 My-blog Project 1 Zhenfeng13 My-blog 2024-11-21 5.4 Medium
Cross site scripting (XSS) vulnerability in ZHENFENG13 My-Blog, allows attackers to inject arbitrary web script or HTML via editing an article in the "blog article" page due to the default configuration not utilizing MyBlogUtils.cleanString.
CVE-2023-29636 1 Zhenfeng13 My-blog Project 1 Zhenfeng13 My-blog 2024-11-21 5.4 Medium
Cross site scripting (XSS) vulnerability in ZHENFENG13 My-Blog, allows attackers to inject arbitrary web script or HTML via the "title" field in the "blog management" page due to the the default configuration not using MyBlogUtils.cleanString.