Medium severity5.4NVD Advisory· Published May 1, 2023· Updated Jun 17, 2026
CVE-2023-29636
CVE-2023-29636
Description
Cross site scripting (XSS) vulnerability in ZHENFENG13 My-Blog, allows attackers to inject arbitrary web script or HTML via the "title" field in the "blog management" page due to the the default configuration not using MyBlogUtils.cleanString.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)
Patches
Vulnerability mechanics
References
1- github.com/ZHENFENG13/My-Blog/issues/131nvdExploitVendor Advisory
News mentions
0No linked articles in our index yet.