5 matches found
CVE-2025-5510
A vulnerability classified as critical was found in quequnlong shiyi-blog up to 1.2.1. This vulnerability affects unknown code of the file /app/sys/article/optimize. The manipulation of the argument url leads to server-side request forgery. The attack can be initiated remotely. The exploit has be...
CVE-2025-5510
creationtimestamp| type| source ---|---|--- 2025-06-03 18:53:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqpxmbau6v2e...
CVE-2025-5510
A vulnerability classified as critical was found in quequnlong shiyi-blog up to 1.2.1. This vulnerability affects unknown code of the file /app/sys/article/optimize. The manipulation of the argument url leads to server-side request forgery. The attack can be initiated remotely. The exploit has be...
CVE-2025-5510 quequnlong shiyi-blog optimize server-side request forgery
A vulnerability classified as critical was found in quequnlong shiyi-blog up to 1.2.1. This vulnerability affects unknown code of the file /app/sys/article/optimize. The manipulation of the argument url leads to server-side request forgery. The attack can be initiated remotely. The exploit has be...
CVE-2025-5510
CVE-2025-5510 affects quequnlong shiyi-blog (versions up to 1.2.1). The issue is a server-side request forgery in unknown code at /app/sys/article/optimize triggered by manipulating the url parameter. Exploitation is remote and has been disclosed publicly; vendor did not respond. Remediation guid...