CNNVD-202506-2879 Information

CNNVD ID

CNNVD-202506-2879

Related CVE

CVE-2025-1987

• CNNVD Published: 2025-06-21

Description (Chinese)

PSONO Client是psono个人开发者的一个PSONO客户端。 PSONO Client存在跨站脚本漏洞，该漏洞源于未正确清理URL字段，可能导致跨站脚本攻击。

Description (English)

PSONO Clinic is a PSONO client of the PSONO personal developer. PSONO Clinic had a cross-site script loophole, which stemmed from an incorrect clean-up of the URL field and could lead to a cross-site script attack.

Hazard Level

Low

Vulnerability Type

跨站脚本

Affected Vendor

Live Support

Published

2025-06-21

Last Modified

2026-02-24

References

https://bitdefender.com/support/support/security-advisories/stored-xss-in-psono-client-via-malicious-vault-entry-urls https://access.redhat.com/security/cve/cve-2025-1987

Patch

https://psono.com/download