📦 Shiyi Blog
by Quequnlong
🔍 What is Shiyi Blog?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This critical vulnerability in shiyi-blog allows attackers to bypass authentication in the administrator backend by exploiting improper authentication in the verifyPassword API endpoint. Attackers can...
This vulnerability allows remote attackers to execute arbitrary code through insecure deserialization in the shiyi-blog application's job handler component. Attackers can exploit this to gain control ...
This critical SSRF vulnerability in quequnlong shiyi-blog allows attackers to make the server send unauthorized requests to internal or external systems by manipulating the 'url' parameter in the /app...
This critical vulnerability in quequnlong shiyi-blog allows remote attackers to perform path traversal attacks via the /api/file/upload endpoint. By manipulating the file/source parameter, attackers c...