Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in weijiang1994 university-bbs (aka Blogin) in commit 9e06bab430bfc729f27b4284ba7570db3b11ce84 (2025-01-13). A weak verification code generation mechanism combined with missing rate limiting allows attackers to perform brute-force attacks on verification codes without authentication. Successful exploitation may result in account takeover via password reset or other authentication bypass methods.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Blogile 安全漏洞
Vulnerability Description
Blogile是一个 Node.js 博客系统。 Blogile存在安全漏洞,该漏洞源于弱验证码生成机制和缺少速率限制,可能导致暴力破解攻击。
CVSS Information
N/A
Vulnerability Type
N/A