11 matches found
EUVD-2011-4782
Malware in sbrugna...
CVE-2025-9395
A vulnerability was identified in wangsongyan wblog 0.0.1. This affects the function RestorePost of the file backup.go. Such manipulation of the argument fileName leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly available and might be use...
CVE-2025-9395 wangsongyan wblog backup.go RestorePost server-side request forgery
A vulnerability was identified in wangsongyan wblog 0.0.1. This affects the function RestorePost of the file backup.go. Such manipulation of the argument fileName leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly available and might be use...
CVE-2025-9395 wangsongyan wblog backup.go RestorePost server-side request forgery
A vulnerability was identified in wangsongyan wblog 0.0.1. This affects the function RestorePost of the file backup.go. Such manipulation of the argument fileName leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is publicly available and might be use...
PT-2025-34573 · Unknown · Wangsongyan Wblog
Name of the Vulnerable Software and Affected Versions: wangsongyan wblog version 0.0.1 Description: A vulnerability exists in the RestorePost function of the backup.go file, allowing for server-side request forgery SSRF through manipulation of the fileName argument. This issue is remotely...
wblog 代码问题漏洞
wblog is an application by OnTheRoad Personal Developer. A code issue vulnerability exists in wblog version 0.0.1, which stems from an incorrect manipulation of the parameter fileName by the RestorePost function in the backup.go file, resulting in a server-side request forgery...
CVE-2011-4865
The Tencent WBlog com.tencent.WBlog 3.3.1 and MicroBlogPad 1.4.0 applications for Android do not properly protect data, which allows remote attackers to read or modify message drafts and search keywords via a crafted application...
腾讯微博 for Android 权限许可和访问控制漏洞
CVE-2011-4865 Android是Google通过Open Handset Alliance发起的项目,用于为移动设备提供完整的软件集,包括操作系统、中间件等。 Android的Tencent WBlog com.tencent.WBlog3.3.1版本和MicroBlogPad1.4.0版本应用程序中存在漏洞,该漏洞源于未正确保护数据。远程攻击者可利用此漏洞借助特制应用程序读取或修改短消息草稿箱和搜索关键词。 0 WBlog 3.3.1 MicroBlogPad 1.4.0 目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:...
CVE-2011-4865
The Tencent WBlog com.tencent.WBlog 3.3.1 and MicroBlogPad 1.4.0 applications for Android do not properly protect data, which allows remote attackers to read or modify message drafts and search keywords via a crafted application...
Code injection
The Tencent WBlog com.tencent.WBlog 3.3.1 and MicroBlogPad 1.4.0 applications for Android do not properly protect data, which allows remote attackers to read or modify message drafts and search keywords via a crafted application...
CVE-2011-4865
The CVE-2011-4865 issue affects Android apps Tencent WBlog 3.3.1 and MicroBlogPad 1.4.0, where data is not protected properly, allowing remote attackers to read or modify message drafts and search keywords via a crafted app. Root cause: insecure data protection within these apps. Impact is data e...