CVE-2022-34011

MEDIUM

OneBlog v2.3.4 - SSRF

Title source: llm

Description

OneBlog v2.3.4 was discovered to contain a Server-Side Request Forgery (SSRF) vulnerability via the parameter entryUrls.

Exploits (1)

gitee 5,303 stars
by yadong.zhang · javawriteup
https://gitee.com/yadong.zhang/DBlog/issues/I5CB2A

References (1)

Scores

CVSS v3 4.3
EPSS 0.0013
EPSS Percentile 32.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Classification

CWE
CWE-918
Status published

Affected Products (1)

zhyd/oneblog

Timeline

Published Jun 23, 2022
Tracked Since Feb 18, 2026