CVE-2025-60319 | PerfreeBlog 4.0.11 API Endpoint AttachController.java uploadAttachByUrl authorization

Inserito da Angelo Barbosa | Ott 30, 2025 | CVE

A vulnerability identified as problematic has been detected in PerfreeBlog 4.0.11. Affected by this vulnerability is the function uploadAttachByUrl of the file AttachController.java of the component API Endpoint. The manipulation leads to missing authorization.

This vulnerability is referenced as CVE-2025-60319. The attack needs to be initiated within the local network. No exploit is available.

CVE-2025-60319 | PerfreeBlog 4.0.11 API Endpoint AttachController.java uploadAttachByUrl authorization

Post correlati

CVE-2024-11260 | netweblogic Events Manager Plugin up to 6.6.3 on WordPress active_status sql injection

CVE-2025-26751 | Fahad Mahmood Alphabetic Pagination Plugin up to 3.2.1 on WordPress cross site scripting

CVE-2025-40648 | Issabel 5.0.0 index.php?menu=conferencia numero_conferencia cross site scripting

CVE-2024-1895 | awordpresslife Event Monster Plugin up to 1.3.4 on WordPress deserialization