Vulnerability Description
A weakness has been identified in zhenfeng13 My-Blog up to 1.0.0. This issue affects some unknown processing of the file /admin/tags/save of the component Tag Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Zhenfeng13 | My-Blog | 1.0 |
Related Weaknesses (CWE)
References
- https://github.com/ZHENFENG13/My-Blog/issues/147ExploitIssue Tracking
- https://github.com/ZHENFENG13/My-Blog/issues/147#issue-3265306297ExploitIssue Tracking
- https://vuldb.com/?ctiid.320423Permissions RequiredVDB Entry
- https://vuldb.com/?id.320423Third Party AdvisoryVDB Entry
- https://vuldb.com/?submit.628095Third Party AdvisoryVDB Entry
- https://github.com/ZHENFENG13/My-Blog/issues/147ExploitIssue Tracking
- https://github.com/ZHENFENG13/My-Blog/issues/147#issue-3265306297ExploitIssue Tracking
FAQ
What is CVE-2025-9101?
CVE-2025-9101 is a vulnerability with a CVSS score of 3.5 (LOW). A weakness has been identified in zhenfeng13 My-Blog up to 1.0.0. This issue affects some unknown processing of the file /admin/tags/save of the component Tag Handler. The manipulation leads to cross ...
How severe is CVE-2025-9101?
CVE-2025-9101 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-9101?
Check the references section above for vendor advisories and patch information. Affected products include: Zhenfeng13 My-Blog.