CNNVD-202507-1837 Information

CNNVD ID

CNNVD-202507-1837

Related CVE

CVE-2025-7579

• CNNVD Published: 2025-07-14

Description (Chinese)

chinese-poetry是chinese-poetry开源的一个中华古诗词数据库。 chinese-poetry 0.1版本存在安全漏洞，该漏洞源于文件rank/server.js的错误操作导致正则表达式复杂性不足。

Description (English)

Chinese-poetry is an open-source Chinese-Chinese poetic database. There is a security loophole in version 0.1 of chinese-poetry, which stems from the error of the document rank/server.js, resulting in a lack of formal expression complexity.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

chinese-poetry

Published

2025-07-14

Last Modified

2026-02-24

References

https://github.com/chinese-poetry/chinese-poetry/issues/396#issue-3204562392 https://vuldb.com/?id.316277 https://vuldb.com/?submit.609704 https://vuldb.com/?ctiid.316277 https://access.redhat.com/security/cve/cve-2025-7579