CVE-2025-5404 – Chaitak-Gorai Blogbook GET Parameter Handler Denial of Service Vulnerability

June 1, 2025

CVE ID : CVE-2025-5404

Published : June 1, 2025, 5:15 p.m. | 10 hours, 5 minutes ago

Description : A vulnerability classified as problematic was found in chaitak-gorai Blogbook up to 92f5cf90f8a7e6566b576fe0952e14e1c6736513. This vulnerability affects unknown code of the file /search.php of the component GET Parameter Handler. The manipulation of the argument Search leads to denial of service. The exploit has been disclosed to the public and may be used. This product is using a rolling release to provide continious delivery. Therefore, no version details for affected nor updated releases are available. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5405 – Chaitak-Gorai Blogbook Cross Site Scripting Vulnerability

Next Article CVE-2025-5403 – Chaitak-Gorai Blogbook SQL Injection Vulnerability

Designing For TV: Principles, Patterns And Practical Guidance (Part 2)

Neo4j introduces new graph architecture that allows operational and analytics workloads to be run together

Beyond the benchmarks: Understanding the coding personalities of different LLMs

Top 10 Use Cases of Vibe Coding in Large-Scale Node.js Applications

Building smarter interactions with MCP elicitation: From clunky tool calls to seamless user experiences

From Zero to MCP: Simplifying AI Integrations with xmcp

Distribution Release: Linux Mint 22.2

Coded Smorgasbord: Basically, a Smorgasbord

Drupal 11’s AI Features: What They Actually Mean for Your Team

Drupal 11’s AI Features: What They Actually Mean for Your Team

Why Data Governance Matters More Than Ever in 2025?

Perficient Included in the IDC Market Glance for Digital Business Professional Services, 3Q25

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

How DevOps Teams Are Redefining Reliability with NixOS and OSTree-Powered Linux

Distribution Release: Linux Mint 22.2

‘Cronos: The New Dawn’ was by far my favorite experience at Gamescom 2025 — Bloober might have cooked an Xbox / PC horror masterpiece

CVE-2025-5404 – Chaitak-Gorai Blogbook GET Parameter Handler Denial of Service Vulnerability

Critical Linux UDisks Daemon Vulnerability (CVE-2025-8067) Exposes Privileged Data to Local Attackers

Google Slapped with $381 Million Fine in France Over Gmail Ads, Cookie Consent Missteps

CVE-2023-28911 – Skoda MIB3 Bluetooth Stack Channel Disconnection Denial-of-Service Vulnerability

CVE-2025-2760 – GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability

CVE-2025-5872 – eGauge EG3000 Energy Monitor Authentication Bypass Vulnerability

You Can Now Use AI Agents to Generate Code in Microsoft Power Apps

Boosting ROI with React Native: Why It’s a Smart Investment for Modern Businesses

CVE-2025-29001 – ZoomIt WooCommerce Shop Page Builder Missing Authorization Vulnerability

CVE-2025-7140 – SourceCodester Best Salon Management System Cross-Site Scripting Vulnerability

CVE-2025-8302 – Realtek rtl81xx SDK Wi-Fi Driver Heap-based Buffer Overflow Local Privilege Escalation Vulnerability

CVE-2025-5404 – Chaitak-Gorai Blogbook GET Parameter Handler Denial of Service Vulnerability

Related Posts