CNNVD-202507-1520 Information

CNNVD ID

CNNVD-202507-1520

Related CVE

CVE-2025-53371

• CNNVD Published: 2025-07-10

Description (Chinese)

DiscordNotifications是Miraheze开源的一个应用程序。 DiscordNotifications存在代码问题漏洞，该漏洞源于通过curl和file_get_contents发送请求到任意URL，可能导致拒绝服务和服务器端请求伪造攻击。

Description (English)

Discord Notifications is an open-source application for Miraheze. There is a code gap in Discord Notifications, which stems from sending requests to random URLs via curl and file get contents, which may lead to the denial of services and server requests for false attacks.

Hazard Level

Low

Vulnerability Type

代码问题

Affected Vendor

Miraheze

Published

2025-07-10

Last Modified

2026-02-24

References

https://github.com/miraheze/DiscordNotifications/commit/1f20d850cbcce5b15951c7c6127b87b927a5415e https://github.com/miraheze/DiscordNotifications/security/advisories/GHSA-gvfx-p3h5-qf65 https://nvd.nist.gov/vuln/detail/CVE-2025-53371

Patch

https://github.com/miraheze/DiscordNotifications