CNNVD-202506-3136 Information

CNNVD ID

CNNVD-202506-3136

Related CVE

CVE-2025-43880

• CNNVD Published: 2025-06-25

Description (Chinese)

Weseek Growi是日本Weseek公司的一个可以用Markdown编写的开源wiki系统。 Weseek Growi 7.1.6之前版本存在安全漏洞，该漏洞源于正则表达式效率问题，可能导致拒绝服务攻击。

Description (English)

Weseek Growi is an open-source wiki system that Weseek, Japan, could use Markdown. There was a security loophole in the previous version of Weseek Growi 7.1.6, which stemmed from the problem of regular expression efficiency and could lead to denial of service attacks.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Weseek

Published

2025-06-25

Last Modified

2026-02-24

References

https://jvn.jp/en/jp/JVN21624250/ https://github.com/weseek/growi/pull/9487 https://nvd.nist.gov/vuln/detail/CVE-2025-43880

Patch

https://github.com/weseek/growi/releases