CVE-2025-8739

EUVD-2025-24019
A vulnerability was found in zhenfeng13 My-Blog up to 1.0.0 and classified as problematic. This issue affects some unknown processing of the file /admin/tags/save. The manipulation of the argument tagName leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
VulDBCNA
4.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 19%
Affected Products (NVD)
VendorProductVersion
zhenfeng13my-blog
1.0
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
zhenfeng13my_blog
1.0
CNA
Common Weakness Enumeration
References
https://github.com/ZHENFENG13/My-Blog/issues/145
https://vuldb.com/?ctiid.319235
https://vuldb.com/?id.319235
https://vuldb.com/?submit.623479
https://github.com/ZHENFENG13/My-Blog/issues/145