VYPR
Medium severity4.3NVD Advisory· Published Mar 27, 2025· Updated Jun 17, 2026

CVE-2025-2835

CVE-2025-2835

Description

A vulnerability was found in zhangyd-c OneBlog up to 2.3.9. It has been declared as problematic. Affected by this vulnerability is the function autoLink of the file com/zyd/blog/controller/RestApiController.java. The manipulation leads to server-side request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • zhangyd-c/OneBlogllm-fuzzy2 versions
    <=2.3.9+ 1 more
    • (no CPE)range: <=2.3.9
    • (no CPE)range: 2.3.0

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.