VYPR
Unrated severityNVD Advisory· Published Dec 15, 2025· Updated Apr 7, 2026

Zomplog 3.9 Cross-Site Scripting Vulnerability via Page Creation

CVE-2023-53887

Description

Zomplog 3.9 contains a cross-site scripting vulnerability that allows authenticated users to inject malicious scripts when creating new pages. Attackers can craft malicious image source and onerror attributes to execute arbitrary JavaScript code in victim's browser.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Zomplog/Zomplogllm-fuzzy2 versions
    = 3.9+ 1 more
    • (no CPE)range: = 3.9
    • (no CPE)range: 3.9

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.