Halo blog 1.2.0 allows users to submit comments on blog posts via /api/content/posts/comments. The javascript code supplied by the attacker will then execute in the victim user’s browser.
Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19007
Reference (s):
- https://github.com/halo-dev/halo/issues/547