Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

BBOT — Vulnerabilities & Security Advisories 8

All 8 CVE vulnerabilities found in BBOT, with AI-generated Chinese analysis, references, and POCs.

Vendor: BLSOPS, LLC

CVE IDTitleCVSSSeverityPublished
CVE-2026-12568 Arbitrary File Write in postman_download module CWE-22 6.5 Medium2026-06-17
CVE-2026-12567 Symlink-following arbitrary write via github_workflows module CWE-59 2.2 Low2026-06-17
CVE-2026-12566 SSRF via unvalidated WWW-Authenticate realm in docker_pull module CWE-918 3.1 Low2026-06-17
CVE-2026-12565 Path Traversal (Zip-Slip) in unarchive module CWE-22 5.3 Medium2026-06-17
CVE-2025-10284 Improper Archive Extraction in unarchive Enables RCE CWE-22 9.6 Critical2025-10-09
CVE-2025-10283 Improper .git Sanitization in gitdumper Enables RCE CWE-22 9.6 Critical2025-10-09
CVE-2025-10282 GitLab Domain Confusion in gitlab Leaks API Key CWE-200 4.7 Medium2025-10-09
CVE-2025-10281 Insecure URL Handling in git_clone Leading to Leaked API Key CWE-200 4.7 Medium2025-10-09

All 8 known CVE vulnerabilities affecting BBOT with full Chinese analysis, references, and POCs where available.