CNNVD-202507-1686 Information

Jul 11, 2025 cve

CNNVD ID

CNNVD-202507-1686

CVE-2025-7452

  • CNNVD Published: 2025-07-11

Description (Chinese)

go-chat是KONENET开源的一个使用Go基于WebSocket的通讯聊天软件。 go-chat存在路径遍历漏洞,该漏洞源于参数fileName操作导致路径遍历。

Description (English)

Go-chat is a Go WebSocket-based communication chat software for KonenET. Go-chat has a loophole that results from the parameter fileName operation.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

KONENET

Published

2025-07-11

Last Modified

2026-02-24

References

http://github.com/kone-net/go-chat/issues/14 https://github.com/kone-net/go-chat/issues/14#issue-3195205637 https://vuldb.com/?ctiid.316096 https://vuldb.com/?id.316096 https://vuldb.com/?submit.607818 https://access.redhat.com/security/cve/cve-2025-7452

Share on: