CNNVD-202506-2925 Information

CNNVD ID

CNNVD-202506-2925

Related CVE

CVE-2025-6496

• CNNVD Published: 2025-06-22

Description (Chinese)

HTACG HTML Tidy是HTML Tidy Advocacy Community Group开源的一个 HTML 工具。 HTACG HTML Tidy 5.8.0版本存在安全漏洞，该漏洞源于文件src/parser.c中函数InsertNodeAsParent存在空指针取消引用。

Description (English)

HTACG HTML Tidy is an HTML open-source HTML tool. There is a security loophole in version 5.8.0 of HTACG HTML Tidy, which stems from the empty pointer unreferenced for the Insert NodeAsParent function in document src/parser.c.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

HTML Tidy Advocacy Community Group

Published

2025-06-22

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/cve-2025-6496 https://nvd.nist.gov/vuln/detail/CVE-2025-6496

Patch

https://github.com/htacg/tidy-html5/releases