CNNVD-202507-1833 Information
CNNVD ID
CNNVD-202507-1833
Related CVE
- CNNVD Published: 2025-07-14
Description (Chinese)
WikiDocs是意大利Manuel Zavatta个人开发者的一个无数据库的 Markdown 平面文件 Wiki 引擎。 WikiDocs 1.0.77及之前版本存在安全漏洞,该漏洞源于文件submit.php中函数image_drop_upload_ajax/image_delete_ajax的错误操作导致路径遍历。
Description (English)
WikiDocs is the Markdown plane file Wiki engine of the Italian personal developer Manuel Zavatta without a database. There is a security loophole in WikiDocs 1.0.77 and earlier versions, which stems from the error of the function image drop upload ajax/image delete ajax in the filesubmit.php.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Live Support
Published
2025-07-14
Last Modified
2026-02-24
References
https://vuldb.com/?ctiid.316273 https://vuldb.com/?submit.609096 https://vuldb.com/?id.316273 https://github.com/Zavy86/WikiDocs/pull/258 https://github.com/Zavy86/WikiDocs/releases/tag/1.0.78 https://github.com/Zavy86/WikiDocs/commit/98ea9ee4a2052c4327f89d2f7688cc1b5749450d https://access.redhat.com/security/cve/cve-2025-7575
Patch
https://github.com/Zavy86/WikiDocs/releases
Share on: