CNNVD-202508-2102 Information

CNNVD ID

CNNVD-202508-2102

Related CVE

CVE-2025-51489

• CNNVD Published: 2025-08-19

Description (Chinese)

Moonshine是MoonShine开源的一个管理面板软件。 Moonshine v3.12.4版本存在安全漏洞，该漏洞源于文件上传控制不当，可能导致任意代码执行。

Description (English)

Moonshine is an open source management panel software for MoonShine. There is a security loophole in Moonshine v3.12.4, which stems from inappropriate document upload controls that may lead to arbitrary code enforcement.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

MoonShine

Published

2025-08-19

Last Modified

2026-02-24

References

https://github.com/moonshine-software/moonshine https://github.com/GiacoLenzo2109/MoonShine_Software_PoCs https://nvd.nist.gov/vuln/detail/CVE-2025-51489

Patch

https://github.com/moonshine-software/moonshine/releases