Mezzanine CMS 6.1.0 - Stored Cross-Site Scripting via Blog Post Injection
A cross-site scripting (XSS) vulnerability in the component /blog/blogpost/add of Mezzanine CMS v6.1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into a blog post.