CVE-2025-13813 | moxi159753 Mogu Blog v2 up to 5.2 Storage Management Endpoint /storage/ authorization

Inserito da Angelo Barbosa | Nov 30, 2025 | CVE

A vulnerability was found in moxi159753 Mogu Blog v2 up to 5.2. It has been classified as critical. This issue affects some unknown processing of the file /storage/ of the component Storage Management Endpoint. The manipulation leads to missing authorization.

This vulnerability is documented as CVE-2025-13813. The attack can be initiated remotely. Additionally, an exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2025-13813 | moxi159753 Mogu Blog v2 up to 5.2 Storage Management Endpoint /storage/ authorization

Post correlati

CVE-2016-10394 | Qualcomm Snapdragon Wired Infrastructure and Networking MDM9206/MDM9607/SD 835/SD 845/SD 850 xbl_sec improper authentication

CVE-2024-4957 | Frontend Checklist Plugin up to 2.3.2 on WordPress Setting cross site scripting

CVE-2024-27954 | WP Automatic Automatic Plugin up to 3.92.0 on WordPress path traversal

CVE-2023-6887 | saysky ForestBlog up to 20220630 Image Upload /admin/upload/img filename unrestricted upload