Mogu blog 5.2 is vulnerable to Cross Site Scripting (XSS).