All 8 CVE vulnerabilities found in DjangoBlog, with AI-generated Chinese analysis, references, and POCs.
Vendor: liangliangyy
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-6611 | liangliangyy DjangoBlog File Upload Endpoint settings.py hard-coded key CWE-321 | 3.1 | Low | 2026-04-20 |
| CVE-2026-6610 | liangliangyy DjangoBlog Setting settings.py hard-coded credentials CWE-798 | 3.7 | Low | 2026-04-20 |
| CVE-2026-6609 | liangliangyy DjangoBlog views.py form_valid improper authorization CWE-285 | 6.3 | Medium | 2026-04-20 |
| CVE-2026-6580 | liangliangyy DjangoBlog Amap API Call views.py hard-coded key CWE-321 | 7.3 | High | 2026-04-19 |
| CVE-2026-6579 | liangliangyy DjangoBlog Clean Endpoint views.py missing authentication CWE-306 | 6.5 | Medium | 2026-04-19 |
| CVE-2026-6578 | liangliangyy DjangoBlog Setting settings.py hard-coded credentials CWE-798 | 5.6 | Medium | 2026-04-19 |
| CVE-2026-6577 | liangliangyy DjangoBlog logtracks Endpoint views.py missing authentication CWE-306 | 7.3 | High | 2026-04-19 |
| CVE-2026-6576 | liangliangyy DjangoBlog WeChat Bot commonapi.py CommandHandler command injection CWE-77 | 6.3 | Medium | 2026-04-19 |
All 8 known CVE vulnerabilities affecting DjangoBlog with full Chinese analysis, references, and POCs where available.