All 3 CVE vulnerabilities found in Friends, with AI-generated Chinese analysis, references, and POCs.
Vendor: akirk
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-7504 | Friends 3.5.1 - Authenticated (Subscriber+) PHP Object Injection CWE-502 | 7.5 | High | 2025-07-12 |
| CVE-2024-12028 | Friends <= 3.2.1 - Missing Authorization CWE-862 | 5.3 | Medium | 2024-12-06 |
| CVE-2024-1978 | Friends <= 2.8.5 - Authenticated (Admin+) Blind Server-Side Request Forgery CWE-918 | 5.5 | Medium | 2024-02-29 |
All 3 known CVE vulnerabilities affecting Friends with full Chinese analysis, references, and POCs where available.