Vulnerability CVE-2024-25865


Published: 2024-03-02

Description:
Cross Site Scripting (XSS) vulnerability in hexo-theme-anzhiyu v1.6.12, allows remote attackers to execute arbitrary code via the algolia search function.

 References:
https://github.com/anzhiyu-c/hexo-theme-anzhiyu/issues/200

Copyright 2026, cxsecurity.com

 

Back to Top