CNNVD-202506-2994 Information

CNNVD ID

CNNVD-202506-2994

Related CVE

CVE-2025-52562

• CNNVD Published: 2025-06-23

Description (Chinese)

Convoy是Convoy开源的一个为托管提供商和爱好者量身定制的现代平台。 Convoy 4.4.1之前版本存在安全漏洞，该漏洞源于LocaleController组件存在目录遍历漏洞。

Description (English)

Convoy is a modern, customized platform for hosting providers and lovers, an open source for Convoy. There was a security loophole in the pre-Convoy 4.4.1 version, which originated from the directory of the LocaleController component.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Convoy

Published

2025-06-23

Last Modified

2026-02-24

References

https://github.com/ConvoyPanel/panel/security/advisories/GHSA-43g3-qpwq-hfgg https://github.com/ConvoyPanel/panel/commit/f8d6202f3e4912b65dbd9f80ba625576944ab36c https://access.redhat.com/security/cve/cve-2025-52562

Patch

https://github.com/ConvoyPanel/panel/releases