Caitoubuo

**Name of the Vulnerable Software and Affected Versions** ZblogPHP version 1.0 **Description** A Cross Site Scripting issue allows a local attacker to execute arbitrary code via a crafted payload in the `title` parameter of the module management model. **Recommendations** For ZblogPHP version 1.0, avoid using the `title` parameter in the module management model until the issue is resolved. As a temporary workaround, consider restricting access to the module management model to minimize the risk of exploitation.