CVE-2025-60355
9.8CRITICALzhangyd-c OneBlog before 2.3.9 was vulnerable to SSTI (Server-Side Template Injection) via FreeMarker templates.
Опубликовано: 10/28/2025Обновлено: 1/8/2026
Описание
zhangyd-c OneBlog before 2.3.9 was vulnerable to SSTI (Server-Side Template Injection) via FreeMarker templates.
ИИ-АнализНа базе ИИ
Затронутые продукты
zhydoneblog
Ссылки
- https://github.com/line2222/vuln/issues/4ExploitIssue TrackingThird Party Advisory