CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability was found in ZHENFENG13/code-projects My-Blog-layui 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/v1/blog/edit. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been...

5.1CVSS6.3AI score0.00189EPSS

Exploits1References1

RedhatCVE•added 2025/04/16 10:53 p.m.•11 views

CVE-2025-3593

A vulnerability was found in ZHENFENG13/code-projects My-Blog-layui 1.0. It has been declared as critical. This vulnerability affects the function Upload of the file /admin/upload/authorImg/. The manipulation of the argument File leads to unrestricted upload. The attack can be initiated remotely...

6.5CVSS7AI score0.00127EPSS

Exploits1References1

RedhatCVE•added 2025/04/16 10:53 p.m.•10 views

CVE-2025-3592

A vulnerability was found in ZHENFENG13/code-projects My-Blog-layui 1.0. It has been classified as problematic. This affects an unknown part of the file /admin/v1/link/edit. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

5.1CVSS6.3AI score0.00189EPSS

Exploits1References1

OSV•added 2025/04/14 11:15 p.m.•2 views

CVE-2025-3593

9.8CVSS6.2AI score

Exploits0References4

NVD•added 2025/04/14 11:15 p.m.•12 views

CVE-2025-3593

9.8CVSS0.00127EPSS

Exploits1References4

Cvelist•added 2025/04/14 10:31 p.m.•13 views

CVE-2025-3593 ZHENFENG13/code-projects My-Blog-layui authorImg upload unrestricted upload

6.5CVSS0.00127EPSS

Exploits1References4

CVE•added 2025/04/14 10:31 p.m.•63 views

CVE-2025-3593

Summary: CVE-2025-3593 concerns ZHENFENG13/code-projects My-Blog-layui 1.0. The flaw is in the upload handler at /admin/upload/authorImg/ where improper handling of the File parameter enables unrestricted file upload. Several connected sources confirm remote exploitation and public disclosure of ...

9.8CVSS6.4AI score0.00127EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2025/04/14 10:31 p.m.•5 views

CVE-2025-3593 ZHENFENG13/code-projects My-Blog-layui authorImg upload unrestricted upload

6.5CVSS7AI score0.00127EPSS

Exploits1References4

NVD•added 2025/04/14 10:15 p.m.•9 views

CVE-2025-3592

5.4CVSS0.00189EPSS

Exploits1References4

OSV•added 2025/04/14 10:15 p.m.•2 views

CVE-2025-3592

5.4CVSS3.8AI score0.00189EPSS

Exploits1References4

NVD•added 2025/04/14 10:15 p.m.•10 views

CVE-2025-3591

5.4CVSS0.00189EPSS

Exploits1References4

OSV•added 2025/04/14 10:15 p.m.•1 views

CVE-2025-3591

5.4CVSS3.7AI score

Exploits0References4

CVE•added 2025/04/14 10:0 p.m.•64 views

CVE-2025-3592

CVE-2025-3592 affects ZHENFENG13/code-projects My-Blog-layui 1.0, specifically the /admin/v1/link/edit endpoint. The underlying issue is a cross-site scripting vulnerability in that endpoint’s input handling, which can be triggered remotely and may affect multiple parameters. The vulnerability ha...

5.4CVSS3.7AI score0.00189EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2025/04/14 10:0 p.m.•5 views

CVE-2025-3592 ZHENFENG13/code-projects My-Blog-layui edit cross site scripting

5.1CVSS6.2AI score0.00189EPSS

Exploits1References4

Cvelist•added 2025/04/14 10:0 p.m.•15 views

CVE-2025-3592 ZHENFENG13/code-projects My-Blog-layui edit cross site scripting

5.1CVSS0.00189EPSS

Exploits1References4

Cvelist•added 2025/04/14 10:0 p.m.•14 views

CVE-2025-3591 ZHENFENG13/code-projects My-Blog-layui edit cross site scripting