Browse all 6 CVE security advisories affecting quequnlong. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Quequnlong is a software component primarily used in web application development and content management systems. Historically, it has been associated with multiple remote code execution (RCE) vulnerabilities, cross-site scripting (XSS) flaws, and privilege escalation issues. The six CVEs recorded for this component highlight consistent security weaknesses in input validation and access control mechanisms. No major public security incidents have been documented, but the pattern of vulnerabilities suggests potential risks for implementations lacking proper hardening or timely updates. Organizations using this component should prioritize applying security patches and implementing additional defensive measures to mitigate exploitation risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-12305 | quequnlong shiyi-blog Job SysJobController.java deserialization — shiyi-blogCWE-502 | 6.3 | Medium | 2025-10-27 |
| CVE-2025-5513 | quequnlong shiyi-blog add cross site scripting — shiyi-blogCWE-79 | 3.5 | Low | 2025-06-03 |
| CVE-2025-5512 | quequnlong shiyi-blog Administrator Backend verifyPassword improper authentication — shiyi-blogCWE-287 | 7.3 | High | 2025-06-03 |
| CVE-2025-5511 | quequnlong shiyi-blog photos improper authorization — shiyi-blogCWE-285 | 5.3 | Medium | 2025-06-03 |
| CVE-2025-5510 | quequnlong shiyi-blog optimize server-side request forgery — shiyi-blogCWE-918 | 6.3 | Medium | 2025-06-03 |
| CVE-2025-5509 | quequnlong shiyi-blog upload path traversal — shiyi-blogCWE-22 | 6.3 | Medium | 2025-06-03 |
This page lists every published CVE security advisory associated with quequnlong. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.