Name of the Vulnerable Software and Affected Versions:

mtons mblog versions up to 3.5.0

Description:

A vulnerability was detected in mtons mblog up to version 3.5.0. This issue affects some unknown processing of the file `/admin/options/update`. The manipulation of the argument `input` results in cross-site scripting. It is possible to launch the attack remotely. The exploit is now public and may be used.

Recommendations:

Versions prior to 3.5.0 are affected.

At the moment, there is no information about a newer version that contains a fix for this vulnerability.