VYPR
Medium severity4.8OSV Advisory· Published Dec 28, 2018· Updated Jun 17, 2026

CVE-2018-16632

CVE-2018-16632

Description

Mezzanine CMS v4.3.1 allows XSS via the /admin/blog/blogcategory/add/?_to_field=id&_popup=1 title parameter at admin/blog/blogpost/add/.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.