exploitDog

GHSA-7gx7-vvxp-v372

Опубликовано: 22 авг. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

zhisheng17 blog 3.0.1-SNAPSHOT has an authentication bypass vulnerability. An attacker can exploit this vulnerability to access API without any token.

zhisheng17 blog 3.0.1-SNAPSHOT has an authentication bypass vulnerability. An attacker can exploit this vulnerability to access API without any token.

Ссылки

EPSS

Процентиль: 29%

0.00105

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-287

Связанные уязвимости

CVE-2024-50644

CVSS3: 9.8

nvd

6 месяцев назад

zhisheng17 blog 3.0.1-SNAPSHOT has an authentication bypass vulnerability. An attacker can exploit this vulnerability to access API without any token.

EPSS

Процентиль: 29%

0.00105

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-287