CNNVD-202507-3348 Information
Jul 25, 2025
cve
CNNVD ID
CNNVD-202507-3348
Related CVE
- CNNVD Published: 2025-07-25
Description (Chinese)
Linkify是Linkify开源的一个插件。 Linkify 4.3.1至4.3.2之前版本存在安全漏洞,该漏洞源于原型污染,容易受到跨站脚本攻击。
Description (English)
Linkify is an open-source plugin for Linkify. The previous version of Linkify 4.3.1 to 4.3.2 had a security gap, which originated in prototype contamination and was vulnerable to cross-site script attacks.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Linkify
Published
2025-07-25
Last Modified
2026-02-24
References
https://fluidattacks.com/advisories/charly https://github.com/nfrasser/linkifyjs https://github.com/nfrasser/linkifyjs/releases/tag/v4.3.2 https://www.npmjs.com/package/linkifyjs
Patch
https://github.com/nfrasser/linkifyjs/releases
Share on: