VYPR

Blog Application

by Cryptpad

Source repositories

CVEs (1)

  • CVE-2025-66024CriMar 4, 2026
    risk 0.52cvss 9.0epss 0.00

    The XWiki blog application allows users of the XWiki platform to create and manage blog posts. Versions prior to 9.15.7 are vulnerable to Stored Cross-Site Scripting (XSS) via the Blog Post Title. The vulnerability arises because the post title is injected directly into the HTML…