5 matches found
CVE-2025-5164
A vulnerability has been found in PerfreeBlog 4.0.11 and classified as problematic. This vulnerability affects the function JwtUtil of the component JWT Handler. The manipulation leads to use of hard-coded cryptographic key . The attack can be initiated remotely. The complexity of an attack is...
CVE-2025-5164
A vulnerability has been found in PerfreeBlog 4.0.11 and classified as problematic. This vulnerability affects the function JwtUtil of the component JWT Handler. The manipulation leads to use of hard-coded cryptographic key . The attack can be initiated remotely. The complexity of an attack is...
CVE-2025-5164
creationtimestamp| type| source ---|---|--- 2025-05-26 02:46:23+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17523 2025-05-26 06:09:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lq2j6nz4mc2q...
CVE-2025-5164
Affected software: PerfreeBlog 4.0.11. Vulnerability: in the function JwtUtil of the JWT Handler, leading to use of a hard-coded cryptographic key. Impact/exposure: exploit can be initiated remotely; attack complexity is high, with confidential data integrity and availability potentially affected...
CVE-2025-5164 PerfreeBlog JWT JwtUtil hard-coded key
A vulnerability has been found in PerfreeBlog 4.0.11 and classified as problematic. This vulnerability affects the function JwtUtil of the component JWT Handler. The manipulation leads to use of hard-coded cryptographic key . The attack can be initiated remotely. The complexity of an attack is...