VULHUB ™

Blosxom is prone to an HTML injection vulnerability. This issue presents itself when Blosxom is used in combination with the 'writeback' plug-in. This can allow an attacker to inject HTML and script code when posting comments on a vulnerable site. A successful attack can allow an attacker to steal cookie-based authentication credentials. Other attacks are possible as well. Blosxom version 2.0 is affected by this issue, however, other versions could be vulnerable as well.

Blosxom is prone to an HTML injection vulnerability. This issue presents itself when Blosxom is used in combination with the 'writeback' plug-in. This can allow an attacker to inject HTML and script code when posting comments on a vulnerable site. A successful attack can allow an attacker to steal cookie-based authentication credentials. Other attacks are possible as well. Blosxom version 2.0 is affected by this issue, however, other versions could be vulnerable as well.