CNNVD-202508-302 Information

CNNVD ID

CNNVD-202508-302

Related CVE

CVE-2025-8535

• CNNVD Published: 2025-08-05

Description (Chinese)

NanoVault是Andrew Steele个人开发者的一个使用Nano加密货币的开源钱包软件。 NanoVault 1.2.1及之前版本存在安全漏洞，该漏洞源于文件/main.js中函数executeJavaScript存在跨站脚本漏洞。

Description (English)

NanoVault is an open-source wallet for Andrew Steele’s personal developer using the Nano encryption currency. NanoVault 1.2.1 and previous versions have a security loophole, which stems from the cross-site script gap in the document/main.js function execute JavaScript.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-05

Last Modified

2026-02-24

References

https://drive.google.com/file/d/1Hil-UQiLweGe9q1aCiiyQoiW9wOJsY7-/view?usp=drive_link https://gist.github.com/jackfromeast/1e2e206813887a470e00b8474c616567 https://vuldb.com/?ctiid.318665 https://vuldb.com/?submit.619142 https://vuldb.com/?id.318665 https://access.redhat.com/security/cve/cve-2025-8535