dengxmenglihua/cve

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-60731 ↗	Oct 24, 2025Friday, 24 October 2025, 18:15	7.6 HIGH	—
PerfreeBlog v4.0.11 has a File Upload vulnerability in the installTheme function
CVE-2025-60735 ↗	Oct 24, 2025Friday, 24 October 2025, 18:15	7.6 HIGH	—
PerfreeBlog v4.0.11 has a File Upload vulnerability in the installPlugin function
CVE-2025-60729 ↗	Oct 24, 2025Friday, 24 October 2025, 18:15	5.3 MEDIUM	—
PerfreeBlog v4.0.11 has an arbitrary file read vulnerability in the validThemeFilePath function
CVE-2025-60730 ↗	Oct 24, 2025Friday, 24 October 2025, 18:15	7.6 HIGH	—
PerfreeBlog v4.0.11 has an arbitrary file deletion vulnerability in the unInstallTheme function
CVE-2025-45872 ↗	Jul 1, 2025Tuesday, 1 July 2025, 14:15	9.8 CRITICAL	—
zrlog v3.1.5 was discovered to contain a Server-Side Request Forgery (SSRF) via the downloadUrl parameter.