CNNVD-202508-2883 Information

CNNVD ID

CNNVD-202508-2883

Related CVE

CVE-2025-9395

• CNNVD Published: 2025-08-24

Description (Chinese)

wblog是OnTheRoad个人开发者的一个应用程序。 wblog 0.0.1版本存在代码问题漏洞，该漏洞源于backup.go文件中的RestorePost函数对参数fileName的错误操作，导致服务端请求伪造。

Description (English)

Wblog is an application for OnTheRoad personal developer. wblog version 0.01 has a code problem loophole, which results from the error of the RestorePost function in the Backup.go file on the argument file file file file file file file file file file file file file file, leading to the service request for forgery.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

个人开发者

Published

2025-08-24

Last Modified

2026-02-24

References

https://vuldb.com/?submit.632367 https://vuldb.com/?id.321231 https://vuldb.com/?ctiid.321231 https://github.com/on-theway/wblog/blob/main/README.md#vulnerability-details-and-poc https://nvd.nist.gov/vuln/detail/CVE-2025-9395