All 6 CVE vulnerabilities found in shiyi-blog, with AI-generated Chinese analysis, references, and POCs.
Vendor: quequnlong
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-12305 | quequnlong shiyi-blog Job SysJobController.java deserialization CWE-502 | 6.3 | Medium | 2025-10-27 |
| CVE-2025-5513 | quequnlong shiyi-blog add cross site scripting CWE-79 | 3.5 | Low | 2025-06-03 |
| CVE-2025-5512 | quequnlong shiyi-blog Administrator Backend verifyPassword improper authentication CWE-287 | 7.3 | High | 2025-06-03 |
| CVE-2025-5511 | quequnlong shiyi-blog photos improper authorization CWE-285 | 5.3 | Medium | 2025-06-03 |
| CVE-2025-5510 | quequnlong shiyi-blog optimize server-side request forgery CWE-918 | 6.3 | Medium | 2025-06-03 |
| CVE-2025-5509 | quequnlong shiyi-blog upload path traversal CWE-22 | 6.3 | Medium | 2025-06-03 |
All 6 known CVE vulnerabilities affecting shiyi-blog with full Chinese analysis, references, and POCs where available.