CVE-2026-4616 | bolo-blog up to 2.6.4 Article Title /console/article/ articleTitle cross site scripting (Issue 330)

A vulnerability, which was classified as problematic, has been found in bolo-blog up to 2.6.4. The affected element is an unknown function of the file /console/article/ of the component Article Title Handler. Performing a manipulation of the argument articleTitle results in cross site scripting.

This vulnerability is cataloged as CVE-2026-4616. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More