5 matches found
CVE-2025-5512
A vulnerability, which was classified as critical, was found in quequnlong shiyi-blog up to 1.2.1. Affected is an unknown function of the file /api/sys/user/verifyPassword/ of the component Administrator Backend. The manipulation leads to improper authentication. It is possible to launch the atta...
CVE-2025-5512
creationtimestamp| type| source ---|---|--- 2025-06-03 18:11:32+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqpv7tqir4j2 2025-06-03 18:35:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqpwlxujyi2r...
CVE-2025-5512
A vulnerability, which was classified as critical, was found in quequnlong shiyi-blog up to 1.2.1. Affected is an unknown function of the file /api/sys/user/verifyPassword/ of the component Administrator Backend. The manipulation leads to improper authentication. It is possible to launch the atta...
CVE-2025-5512
Summary (CVE-2025-5512) : quequnlong shiyi-blog, up to version 1.2.1, has an improper authentication flaw in the Administrator Backend at /api/sys/user/verifyPassword/. The vulnerability affects the Administrator Backend component and can be exploited remotely; multiple sources (NVD/NVD mirror, R...
CVE-2025-5512 quequnlong shiyi-blog Administrator Backend verifyPassword improper authentication
A vulnerability, which was classified as critical, was found in quequnlong shiyi-blog up to 1.2.1. Affected is an unknown function of the file /api/sys/user/verifyPassword/ of the component Administrator Backend. The manipulation leads to improper authentication. It is possible to launch the atta...