Medium severity4.8OSV Advisory· Published Dec 28, 2018· Updated Jun 17, 2026
CVE-2018-16632
CVE-2018-16632
Description
Mezzanine CMS v4.3.1 allows XSS via the /admin/blog/blogcategory/add/?_to_field=id&_popup=1 title parameter at admin/blog/blogpost/add/.
Affected products
2- Range: 0.10, 0.10.1, 0.10.2, …
- Range: =4.3.1
Patches
Vulnerability mechanics
References
1- github.com/security-breachlock/CVE-2018-16632/blob/master/mezzanine_persistent%20XSS.pdfnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.