Github Mezzanine, a content management platform, is vulnerable to a cross-site scripting vulnerability that originates from a cross-site scripting (XSS) vulnerability in Mezzanine v4.3.1. The vulnerability can be exploited to execute arbitrary code via the “Description” field of “admin/blog/blogpost/add/”.
CPE | Name | Operator | Version |
---|---|---|---|
mezzanine mezzanine | eq | 4.3.1 |