CNNVD-202508-2939 Information
Aug 25, 2025
cve
CNNVD ID
CNNVD-202508-2939
Related CVE
- CNNVD Published: 2025-08-25
Description (Chinese)
PerfreeBlog是PerfreeBlog开源的一款基于java开发的博客/CMS建站平台。 PerfreeBlog v4.0.11版本存在安全漏洞,该漏洞源于getThemeFileContent函数存在任意文件读取问题。
Description (English)
PerfreeBlog is a blog/CMS platform based on Java’s development of PerfreeBlog. There is a security loophole in version PerfreeBlog v.4.011, which stems from any file reading problem in the GetThemeFileContent function.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
PerfreeBlog
Published
2025-08-25
Last Modified
2026-02-24
References
https://github.com/147536951/Qiany1/blob/main/Perfreeblog_2.pdf https://access.redhat.com/security/cve/cve-2025-29421 https://nvd.nist.gov/vuln/detail/CVE-2025-29421
Share on: