CVE-2025-13815

A weakness has been identified in moxi159753 Mogu Blog v2 up to 5.2. The affected element is an unknown function of the file /file/pictures. This manipulation of the argument filedatas causes unrestricted upload. The attack may be initiated remotely. The exploit has been made available to the...

CVE-2025-13815

A weakness has been identified in moxi159753 Mogu Blog v2 up to 5.2. The affected element is an unknown function of the file /file/pictures. This manipulation of the argument filedatas causes unrestricted upload. The attack may be initiated remotely. The exploit has been made available to the...

CVE-2025-13815

A weakness has been identified in moxi159753 Mogu Blog v2 up to 5.2. The affected element is an unknown function of the file /file/pictures. This manipulation of the argument filedatas causes unrestricted upload. The attack may be initiated remotely. The exploit has been made available to the...

CVE-2025-13815

CVE-2025-13815 affects moxi159753 Mogu Blog v2 up to 5.2. The vulnerability occurs in an unknown function under the endpoint /file/pictures where manipulating the argument filedatas enables an unrestricted file upload. The attack is remote and public exploit PoCs exist. Multiple sources confirm t...

Mogu blog 代码问题漏洞

Mogu blog 蘑菇博客 is a micro-architecture based front-end and back-end shared blog system by individual developers in Streamlet, China. A code issue vulnerability exists in Mogu blog v2 5.2 and earlier versions, which stems from an unrestricted parameter filedatas in file/file/pictures, which could...

PT-2025-48428

Name of the Vulnerable Software and Affected Versions Mogu Blog v2 versions up to 5.2 Description A weakness exists in Mogu Blog v2 up to version 5.2. This issue involves the manipulation of the filedatas argument within an unknown function of the /file/pictures endpoint, leading to unrestricted...