cvedb.io
CVE-2021-46028
MEDIUM · CVSS 4.3
EPSS exploitation probability: 0%
Published 2022-01-20T00:15:08.287 · Last modified 2026-06-17T04:14:25.660

Summary

In mblog <= 3.5.0 there is a CSRF vulnerability in the background article management. The attacker constructs a CSRF load. Once the administrator clicks a malicious link, the article will be deleted.

Affected products

mblog_project — mblog

Does this affect you?

Add your gear to cvedb and we'll alert you only when mblog_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.