CVE-2025-9395

Name of the Vulnerable Software and Affected Versions: wangsongyan wblog version 0.0.1

Description: A vulnerability exists in the RestorePost function of the backup.go file, allowing for server-side request forgery (SSRF) through manipulation of the fileName argument. This issue is remotely exploitable. The vendor was contacted but did not respond.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.