{"id":"CVE-2021-46028","details":"In mblog \u003c= 3.5.0 there is a CSRF vulnerability in the background article management. The attacker constructs a CSRF load. Once the administrator clicks a malicious link, the article will be deleted.","modified":"2026-04-10T04:41:48.520812Z","published":"2022-01-20T00:15:08.287Z","references":[{"type":"REPORT","url":"https://github.com/langhsu/mblog/issues/50"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/langhsu/mblog","events":[{"introduced":"0"},{"last_affected":"20fca49453229ae7066cece8653eccd7e3a88613"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"3.5.0"}]}}],"versions":["3.0","3.1.12","3.5.0","v0.2-alpha"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-46028.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}]}