CNNVD-202508-3199 Information

CNNVD ID

CNNVD-202508-3199

Related CVE

CVE-2025-57821

• CNNVD Published: 2025-08-27

Description (Chinese)

Basecamp是Basecamp公司的一个项目管理软件。 Basecamp 1.3.0之前版本存在输入验证错误漏洞，该漏洞源于URL验证不当，可能导致重定向攻击。

Description (English)

Basecamp is a project management software for Basecamp. The previous version of Basecamp 1.3.0 had an input validation error loophole, which stemmed from inappropriate URL validation and could lead to a re-directional attack.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

Basecamp

Published

2025-08-27

Last Modified

2026-02-24

References

https://github.com/basecamp/google_sign_in/security/advisories/GHSA-7pwc-wh6m-44q3 https://github.com/basecamp/google_sign_in/releases/tag/v1.3.0 https://github.com/basecamp/google_sign_in/pull/73 https://github.com/basecamp/google_sign_in/commit/85903651201257d4f14b97d4582e6d968ac32f15 https://nvd.nist.gov/vuln/detail/CVE-2025-57821

Patch

https://github.com/basecamp/google_sign_in/releases