Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

NewsBlogger — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in NewsBlogger, with AI-generated Chinese analysis, references, and POCs.

Vendor: spicethemes

CVE IDTitleCVSSSeverityPublished
CVE-2025-12821 NewsBlogger <= 0.2.5.6 - 0.2.6.1 - Cross-Site Request Forgery to Arbitrary Plugin Installation CWE-352 8.8 High2026-02-19
CVE-2025-1304 NewsBlogger <= 0.2.5.1 - Authenticated (Subscriber+) Arbitrary File Upload CWE-862 8.8 High2025-05-01
CVE-2025-1305 NewsBlogger <= 0.2.5.4 - Cross-Site Request Forgery to Arbitrary Plugin Installation CWE-352 8.8 High2025-05-01

All 3 known CVE vulnerabilities affecting NewsBlogger with full Chinese analysis, references, and POCs where available.