CNNVD-202509-2306 Information

CNNVD ID

CNNVD-202509-2306

Related CVE

CVE-2025-56264

• CNNVD Published: 2025-09-16

Description (Chinese)

OneBlog是yadong.zhang个人开发者的一个漂亮、功能强大的Java博客。 OneBlog 2.3.9版本存在安全漏洞，该漏洞源于/api/comment端点存在缺陷，可能导致拒绝服务攻击。

Description (English)

OneBlog is a beautiful and powerful Java blog by Yadong.zhang personal developer. OneBlog 2.3.9 has a security loophole, which stems from deficiencies at the /api/comment end point, which could lead to a denial of service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-09-16

Last Modified

2026-02-24

References

https://github.com/echo0d/vulnerability/blob/main/zhangyd-c_OneBlog/DoS.md https://access.redhat.com/security/cve/cve-2025-56264