CNNVD-202508-2913 Information

CNNVD ID

CNNVD-202508-2913

Related CVE

CVE-2025-57805

• CNNVD Published: 2025-08-25

Description (Chinese)

The Scratch Channel是The Scratch Channel开源的一个项目网站。 The Scratch Channel 1版本和1.1版本存在输入验证错误漏洞，该漏洞源于文章发布端点权限验证不足，可能导致未授权发布文章。

Description (English)

The Scratch Channel is an open-source project for The Scratch Channel. The Scratch Channel 1 and Version 1.1 have input-validation bugs, which stem from inadequate end-point authentication of articles, which may lead to unauthorized publication.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

The Scratch Channel

Published

2025-08-25

Last Modified

2026-02-24

References

https://github.com/The-Scratch-Channel/tsc-web-client/security/advisories/GHSA-h5rj-2466-qr23 https://nvd.nist.gov/vuln/detail/CVE-2025-57805

Patch

https://github.com/The-Scratch-Channel/tsc-web-client/releases