CVE-2023-30184

A stored cross-site scripting (XSS) vulnerability in Typecho v1.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the url parameter at /index.php/archives/1/comment.

We have discovered 942 live websites that are affected by CVE-2023-30184.

Run a Free Instant Scan



Affected Software

Product  Typecho
Category Blogs
Vulnerable Domains942 live websites (100% of Typecho install base)
Vulnerable Versions
  • from 0 through 1.2
Vulnerable Versions Count0 versions ( less than 0.1% of all versions)



Details

  • Published - May 4, 2023
  • Updated - Jan 29, 2025

Website Distribution by Country

Number of websites using CVE-2023-30184
United States226 websites


China538 websites
Singapore80 websites
Canada32 websites
Hong Kong29 websites
France5 websites
Germany4 websites
Japan4 websites
GB2 websites

Website Distribution by TLD

Number of websites using CVE-2023-30184
.com399 websites
.cn220 websites
.net45 websites
.org18 websites
.info10 websites
.co3 websites
.ca2 websites
.com.cn1 websites
.de1 websites
.io1 websites

Websites affected by CVE-2023-30184

Top websites that are affected by CVE-2023-30184. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*****.com China*,***
******.com China**,***
*****.com Singapore***,***
******.com Singapore***,***
***.me United States***,***
*********.com United States***,***
*******.com Hong Kong***,***
*******.com China***,***
*******.com United States***,***
****.********.com United States***,***
See full domain list

FAQ

A total of 942 websites have been identified as vulnerable to CVE-2023-30184, based on global website indexing conducted by WebTechSurvey.
The Typecho is affected by the CVE-2023-30184 vulnerability.
Typecho versions up to and including 1.2 are vulnerable to CVE-2023-30184.