CNNVD-202508-236 Information
CNNVD ID
CNNVD-202508-236
Related CVE
- CNNVD Published: 2025-08-04
Description (Chinese)
Austrian Archaeological Institute OpenAtlas是奥地利Austrian Archaeological Institute公司的一个用于人文学科研究的软件平台。 Austrian Archaeological Institute OpenAtlas v8.11.0版本存在安全漏洞,该漏洞源于Name字段存在跨站脚本,可能导致执行任意Web脚本。
Description (English)
Austrian Archaeology Institute Open Atlas is a software platform for research in the humanities of Austrian Austrian Archaeology Institute. There is a security loophole in Atlas version V81.01.0 of the Austrian Archaeology Institute Open, which stems from the existence of a cross-site script in the name field, which could lead to the execution of any Web script.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Austrian Archaeological Institute
Published
2025-08-04
Last Modified
2026-02-24
References
https://www.sec4you-pentest.com/schwachstellen/ https://www.sec4you-pentest.com/schwachstelle/openatlas-stored-nested-xss-delete-button/ https://access.redhat.com/security/cve/cve-2025-51534
Patch
https://github.com/craws/OpenAtlas/releases
Share on: