Browse all 3 CVE security advisories affecting wbolt. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Wbolt is a web application framework primarily used for building dynamic websites and web services. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and insecure default configurations. The framework's modular architecture has introduced additional risks through third-party extensions with inconsistent security practices. While no major public security incidents have been widely documented, the three CVEs associated with wbolt highlight recurring issues in access controls and data sanitization, suggesting a need for enhanced security reviews in development workflows.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-6319 | IMGspider <= 2.3.10 - Authenticated (Contributor+) Arbitrary File Upload via 'upload' — IMGspider – 图片采集抓取插件CWE-434 | 8.8 | High | 2024-07-04 |
| CVE-2024-6318 | IMGspider <= 2.3.10 - Authenticated (Contributor+) Arbitrary File Upload via 'upload_img_file' — IMGspider – 图片采集抓取插件CWE-434 | 8.8 | High | 2024-07-04 |
This page lists every published CVE security advisory associated with wbolt. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.