CNNVD-202507-1355 Information

CNNVD ID

CNNVD-202507-1355

Related CVE

CVE-2025-53624

• CNNVD Published: 2025-07-09

Description (Chinese)

Docusaurus gists plugin是Webber Takken个人开发者的一个自动化插件。 Docusaurus gists plugin 4.0.0之前版本存在信息泄露漏洞，该漏洞源于GitHub令牌泄露，可能导致凭据泄露。

Description (English)

Docusaurus girls plugin is an automated plugin for Webber Takken personal developers. There was a leak in the previous version of Docusaurus girls plugin 4.0.0, which originated from the leak of GitHub ’ s token and could lead to a leak on evidence.

Hazard Level

Low

Vulnerability Type

信息泄露

Affected Vendor

Live Support

Published

2025-07-09

Last Modified

2026-02-24

References

https://github.com/webbertakken/docusaurus-plugin-content-gists/commit/8d4230b82412edb215ddfa9e609d178510a5fe31 https://github.com/webbertakken/docusaurus-plugin-content-gists/security/advisories/GHSA-qf34-qpr4-5pph

Patch

https://github.com/webbertakken/docusaurus-plugin-content-gists/releases