CVE-2021-30637

Published
View on NVD ↗
CVSS v3
5.4
MEDIUM
CVSS v2
3.5
LOW
Affected
1
PROJECT

Description

htmly 2.8.0 allows stored XSS via the blog title, Tagline, or Description to config.html.php.

danpros/htmly
danpros/htmly
Simple and fast databaseless PHP blogging platform, and Flat-File CMS
GitHubGitHub
1.34K