VYPR
Medium severity5.4NVD Advisory· Published Oct 30, 2017· Updated Jun 17, 2026

CVE-2017-16230

CVE-2017-16230

Description

In admin/write-post.php in Typecho through 1.1, one can log in to the background page, write a new article, and add payload in the article content, resulting in XSS via index.php/action/contents-post-edit.

Affected products

3
  • Typecho/Typechoinferred3 versions
    <=1.1+ 2 more
    • (no CPE)range: <=1.1
    • cpe:2.3:a:typecho:typecho:*:*:*:*:*:*:*:*range: <=1.1
    • (no CPE)range: <=1.1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.