Unrated severityNVD Advisory· Published Dec 15, 2025· Updated Apr 7, 2026
Zomplog 3.9 Cross-Site Scripting Vulnerability via Page Creation
CVE-2023-53887
Description
Zomplog 3.9 contains a cross-site scripting vulnerability that allows authenticated users to inject malicious scripts when creating new pages. Attackers can craft malicious image source and onerror attributes to execute arbitrary JavaScript code in victim's browser.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
3- www.exploit-db.com/exploits/51625mitreexploit
- www.vulncheck.com/advisories/zomplog-cross-site-scripting-vulnerability-via-page-creationmitrethird-party-advisory
- web.archive.org/web/20080616153330/http://zomp.nl/zomplog/mitreproduct
News mentions
0No linked articles in our index yet.