Name of the Vulnerable Software and Affected Versions:

mtons mblog versions up to 3.5.0

Description:

A vulnerability exists in mtons mblog up to version 3.5.0 within the Admin Panel component. Manipulation of the `Title` argument in the `/admin/post/list` file can lead to cross-site scripting. The attack can be launched remotely. The exploit has been publicly disclosed.

Recommendations:

Versions prior to 3.5.0 are affected.

As a temporary workaround, consider restricting access to the `/admin/post/list` file.

Sanitize the `Title` argument to prevent script injection.