CNNVD-202508-1380 Information

CNNVD ID

CNNVD-202508-1380

Related CVE

CVE-2025-50251

• CNNVD Published: 2025-08-13

Description (Chinese)

Plane是Plane开源的一个开源、自托管的项目规划工具。 Plane 0.23.1版本存在安全漏洞，该漏洞源于密码恢复功能存在服务端请求伪造。

Description (English)

Plane is an open-source, self-hosted project planning tool for Plane ’ s open source. Version 0.23.1 of Plane has a security loophole, which stems from the existence of a service-end request for a password restoration.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Plane

Published

2025-08-13

Last Modified

2026-02-24

References

https://packetstorm.news/files/id/190475/ https://www.exploit-db.com/exploits/52211 https://access.redhat.com/security/cve/cve-2025-50251

Patch

https://github.com/makeplane/plane/releases