Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

blinkospace — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting blinkospace. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Blinkospace operates as a cloud-based collaboration platform enabling real-time document editing and team communication. Historically, the system has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its 10 recorded CVEs. Notable security characteristics include insufficient input validation and inadequate access controls in its web interface. While no major public security incidents have been documented, the consistent pattern of vulnerabilities in core functionality suggests potential risks for organizations relying on the platform for sensitive collaborative work.

Top products by blinkospace: blinko
CVE IDTitleCVSSSeverityPublished
CVE-2026-23882 Blinko: Admin RCE - MCP Server Command Injection — blinkoCWE-78 8.8 -2026-03-23
CVE-2026-23485 Blinko: Unauthorized Path Traversal File Enumeration - music-metadata — blinkoCWE-22 5.3 -2026-03-23
CVE-2026-23488 Blinko: multiple interfaces in the comment feature allow unauthorized access — blinkoCWE-639 5.3 -2026-03-23
CVE-2026-23487 Blinko: IDOR - user.detail Endpoint Leaks Superadmin Token — blinkoCWE-639 8.1 -2026-03-23
CVE-2026-23486 Blinko: Unauthorized User Information Leak — blinkoCWE-200 5.3 -2026-03-23
CVE-2026-23480 Blinko: Low Privilege User Privilege Escalation - upsertUser Endpoint — blinkoCWE-288 8.8 -2026-03-23
CVE-2026-23481 Blinko: Authenticated Arbitrary File Write - saveAdditionalDevFile — blinkoCWE-22 8.1 -2026-03-23
CVE-2026-23484 Blinko: Authenticated Arbitrary File Write - saveDevPlugin — blinkoCWE-22 6.5 -2026-03-23
CVE-2026-23483 Blinko: Unauthorized Arbitrary File Read - /plugins — blinkoCWE-22--2026-03-23
CVE-2026-23482 Blinko: Unauthorized Arbitrary File Read - /api/file/temp — blinkoCWE-22 5.3 -2026-03-23

This page lists every published CVE security advisory associated with blinkospace. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.