Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Post editor functionality in the hexo-admin plugin versions 2.3.0 and earlier for Node.js is vulnerable to stored XSS via the content of a post.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
hexo-admin plugin for Node.js 跨站脚本漏洞
Vulnerability Description
hexo-admin plugin for Node.js是一款使用在Node.js中的后端管理插件。 hexo-admin plugin for Node.js 2.3.0及之前版本中Post editor功能存在跨站脚本漏洞。该漏洞源于WEB应用缺少对客户端数据的正确验证。攻击者可利用该漏洞执行客户端代码。
CVSS Information
N/A
Vulnerability Type
N/A