CVE-2025-8740 – My-Blog Category Handler Cross-Site Scripting Vulnerability

CVE ID : CVE-2025-8740

Published : Aug. 8, 2025, 9:15 p.m. | 15 minutes ago

Description : A vulnerability was found in zhenfeng13 My-Blog up to 1.0.0. It has been classified as problematic. Affected is an unknown function of the file /admin/categories/save of the component Category Handler. The manipulation of the argument categoryName leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…