CNNVD-202510-3316 Information

Oct 25, 2025 cve

CNNVD ID

CNNVD-202510-3316

CVE-2025-60729

  • CNNVD Published: 2025-10-25

Description (Chinese)

PerfreeBlog是PerfreeBlog开源的一款基于java开发的博客/CMS建站平台。 PerfreeBlog 4.0.11版本存在安全漏洞,该漏洞源于validThemeFilePath函数存在任意文件读取问题。

Description (English)

PerfreeBlog is a blog/CMS platform based on Java’s development of PerfreeBlog. There is a security loophole in the PerfreeBlog, version 4.0.11, which stems from any file reading problem in the Valid ThemeFilePath function.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

PerfreeBlog

Published

2025-10-25

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/cve-2025-60729

Share on: