Browse all 4 CVE security advisories affecting BLSOPS, LLC. AI-powered Chinese analysis, POCs, and references for each vulnerability.
BLSOPS, LLC develops security tools and penetration testing services, focusing on identifying vulnerabilities in enterprise applications and network infrastructure. Historically, their products have been associated with multiple remote code execution (RCE) vulnerabilities, cross-site scripting (XSS) flaws, and privilege escalation issues. The company has four CVEs on record, primarily affecting their web-based security assessment platforms. While no major security incidents have been publicly documented, their tools' vulnerabilities have demonstrated potential for unauthorized system access and data exposure. BLSOPS, LLC's security track record highlights the importance of regular vulnerability assessments and secure coding practices in security tool development.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-10284 | Improper Archive Extraction in unarchive Enables RCE — bbotCWE-22 | 9.6 | Critical | 2025-10-09 |
| CVE-2025-10283 | Improper .git Sanitization in gitdumper Enables RCE — bbotCWE-22 | 9.6 | Critical | 2025-10-09 |
| CVE-2025-10282 | GitLab Domain Confusion in gitlab Leaks API Key — bbotCWE-200 | 4.7 | Medium | 2025-10-09 |
| CVE-2025-10281 | Insecure URL Handling in git_clone Leading to Leaked API Key — bbotCWE-200 | 4.7 | Medium | 2025-10-09 |
This page lists every published CVE security advisory associated with BLSOPS, LLC. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.