2 matches found
CVE-2025-9151 LiuYuYang01 ThriveX-Blog web updateJsonValueByName improper authorization
A security flaw has been discovered in LiuYuYang01 ThriveX-Blog up to 3.1.7. Affected by this vulnerability is the function updateJsonValueByName of the file /webconfig/json/name/web. Performing manipulation results in improper authorization. It is possible to initiate the attack remotely. The...
CVE-2025-9151
The CVE-2025-9151 entry concerns LiuYuYang01 ThriveX-Blog (versions up to 3.1.7). The vulnerability resides in the updateJsonValueByName function within /web_config/json/name/web, enabling improper authorization and remote initiation. Public exploit material exists, and multiple sources confirm t...