6 matches found
CVE-2025-13815
A weakness has been identified in moxi159753 Mogu Blog v2 up to 5.2. The affected element is an unknown function of the file /file/pictures. This manipulation of the argument filedatas causes unrestricted upload. The attack may be initiated remotely. The exploit has been made available to the...
CVE-2025-13815
A weakness has been identified in moxi159753 Mogu Blog v2 up to 5.2. The affected element is an unknown function of the file /file/pictures. This manipulation of the argument filedatas causes unrestricted upload. The attack may be initiated remotely. The exploit has been made available to the...
CVE-2025-13815
A weakness has been identified in moxi159753 Mogu Blog v2 up to 5.2. The affected element is an unknown function of the file /file/pictures. This manipulation of the argument filedatas causes unrestricted upload. The attack may be initiated remotely. The exploit has been made available to the...
CVE-2025-13815
CVE-2025-13815 affects moxi159753 Mogu Blog v2 up to 5.2. The vulnerability occurs in an unknown function under the endpoint /file/pictures where manipulating the argument filedatas enables an unrestricted file upload. The attack is remote and public exploit PoCs exist. Multiple sources confirm t...
PT-2025-48428
Name of the Vulnerable Software and Affected Versions Mogu Blog v2 versions up to 5.2 Description A weakness exists in Mogu Blog v2 up to version 5.2. This issue involves the manipulation of the filedatas argument within an unknown function of the /file/pictures endpoint, leading to unrestricted...
Mogu blog 代码问题漏洞
Mogu blog 蘑菇博客 is a micro-architecture based front-end and back-end shared blog system by individual developers in Streamlet, China. A code issue vulnerability exists in Mogu blog v2 5.2 and earlier versions, which stems from an unrestricted parameter filedatas in file/file/pictures, which could...