CNNVD-202506-1653 Information

CNNVD ID

CNNVD-202506-1653

Related CVE

CVE-2025-4613

• CNNVD Published: 2025-06-12

Description (Chinese)

Google Web Designer是美国谷歌（Google）公司的一个专业级HTML5广告与网页内容创作工具，支持可视化设计与代码编辑。 Google Web Designer 16.3.0.0407之前版本存在输入验证错误漏洞，该漏洞源于模板处理存在路径遍历，可能导致远程代码执行。

Description (English)

Google Web Designer is a professional HTML5 advertising and web content creation tool for Google, supporting visual design and code editing. Prior to Google Web Designer 16.3.0.0407, there was an input validation error loophole, which originated from the template processing of the existence of pathways, which could lead to remote code execution.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

谷歌

Published

2025-06-12

Last Modified

2026-02-24

References

https://balintmagyar.com/articles/google-web-designer-path-traversal-client-side-rce-cve-2025-4613 https://nvd.nist.gov/vuln/detail/CVE-2025-4613

Patch

https://webdesigner.withgoogle.com/