Tag

Gps-Injection

1 brief RSS

liangliangyy DjangoBlog Authentication Bypass Vulnerability (CVE-2026-6577)

A critical authentication bypass vulnerability in liangliangyy DjangoBlog up to version 2.1.0.0 (CVE-2026-6577) allows remote attackers to inject arbitrary GPS data without authentication via the logtracks endpoint, potentially leading to data manipulation and unauthorized access.

cve-2026-6577 djangoblog authentication-bypass gps-injection web-application

2r 1t 1c 2w ago