CNNVD-202508-3021 Information
CNNVD ID
CNNVD-202508-3021
Related CVE
- CNNVD Published: 2025-08-25
Description (Chinese)
The Scratch Channel是The Scratch Channel开源的一个项目网站。 The Scratch Channel 1版本存在输入验证错误漏洞,该漏洞源于本地存储可被编辑,可能导致账户信息篡改。
Description (English)
The Scratch Channel is an open-source project for The Scratch Channel. Version 1 of The Scratch Channel contains an input authentication error loophole, which originates from local storage that can be edited and may lead to tampering with account information.
Hazard Level
High
Vulnerability Type
输入验证错误
Affected Vendor
The Scratch Channel
Published
2025-08-25
Last Modified
2026-02-24
References
https://github.com/The-Scratch-Channel/tsc-web-client/security/advisories/GHSA-9q4f-4vjm-7gp2 https://github.com/The-Scratch-Channel/tsc-web-client/releases/tag/v1.1 https://github.com/The-Scratch-Channel/tsc-web-client/discussions/77 https://nvd.nist.gov/vuln/detail/CVE-2025-55301
Patch
https://github.com/The-Scratch-Channel/tsc-web-client/releases
Share on: