Metrics
Affected Vendors & Products
Wed, 03 Sep 2025 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Zhenfeng13
Zhenfeng13 my-blog |
|
CPEs | cpe:2.3:a:zhenfeng13:my-blog:1.0:*:*:*:*:*:*:* | |
Vendors & Products |
Zhenfeng13
Zhenfeng13 my-blog |
Mon, 18 Aug 2025 13:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Mon, 18 Aug 2025 02:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A security flaw has been discovered in zhenfeng13 My-Blog 1.0.0. This vulnerability affects unknown code of the file /blog/comment of the component Frontend Blog Article Comment Handler. The manipulation leads to authentication bypass by capture-replay. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. | |
Title | zhenfeng13 My-Blog Frontend Blog Article Comment comment authentication replay | |
Weaknesses | CWE-287 CWE-294 |
|
References |
| |
Metrics |
cvssV2_0
|

Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2025-08-18T13:10:57.795Z
Reserved: 2025-08-17T14:07:00.729Z
Link: CVE-2025-9100

Updated: 2025-08-18T13:10:47.686Z

Status : Analyzed
Published: 2025-08-18T02:15:27.770
Modified: 2025-09-03T15:25:42.853
Link: CVE-2025-9100

No data.

No data.