Metrics
Affected Vendors & Products
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Fri, 03 Oct 2025 01:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:quequnlong:shiyi-blog:*:*:*:*:*:*:*:* |
Tue, 03 Jun 2025 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 03 Jun 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability, which was classified as critical, has been found in quequnlong shiyi-blog up to 1.2.1. This issue affects some unknown processing of the file /dev api/app/album/photos/. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. | |
Title | quequnlong shiyi-blog photos improper authorization | |
Weaknesses | CWE-266 CWE-285 |
|
References |
| |
Metrics |
cvssV2_0
|

Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2025-06-03T17:33:48.688Z
Reserved: 2025-06-03T05:58:08.163Z
Link: CVE-2025-5511

Updated: 2025-06-03T17:33:41.244Z

Status : Analyzed
Published: 2025-06-03T17:15:22.283
Modified: 2025-10-03T01:15:42.177
Link: CVE-2025-5511

No data.

Updated: 2025-06-23T08:17:26Z