CNNVD-202508-3310 Information
CNNVD ID
CNNVD-202508-3310
Related CVE
- CNNVD Published: 2025-08-28
Description (Chinese)
Volto是Plone Foundation开源的一个内容管理系统。 Volto 19.0.0-alpha.4和18.24.0之前版本存在安全漏洞,该漏洞源于匿名用户访问特定URL可能导致NodeJS服务器退出。
Description (English)
Volto is an open-source content management system for Plane Foundation. Volto 19.0.0-alpha.4 and 18.24.0 had a security loophole, which stemmed from anonymous user access to specific URLs that could cause the NodeJS server to exit.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Plone Foundation
Published
2025-08-28
Last Modified
2026-02-24
References
https://github.com/plone/volto/security/advisories/GHSA-xjhf-7833-3pm5 https://github.com/plone/volto/releases/tag/19.0.0-alpha.4 https://github.com/plone/volto/releases/tag/18.24.0 https://github.com/plone/volto/releases/tag/17.22.1 https://github.com/plone/volto/releases/tag/16.34.0 https://github.com/plone/volto/commit/2789a287ac45ad9039fb9161d465ba13241fff0a https://nvd.nist.gov/vuln/detail/CVE-2025-58047
Patch
https://github.com/plone/volto/releases
Share on: