CVE-2023-22856

Publication date

2023-03-06 06:23:18

Family

TML

State

PUBLISHED

Description

A stored Cross-site Scripting (XSS) vulnerability in BlogEngine.NET 3.3.8.0, allows injection of arbitrary JavaScript in the security context of a blog visitor through an upload of a specially crafted file.