CNNVD-202508-3503 Information

CNNVD ID

CNNVD-202508-3503

Related CVE

CVE-2023-41471

• CNNVD Published: 2025-08-29

Description (Chinese)

Copyparty是ed个人开发者的一个便携式文件服务器。 Copyparty 1.9.1版本存在安全漏洞，该漏洞源于WEEKEND-PLANS函数处理不当，可能导致跨站脚本攻击。

Description (English)

Copyparty is a portable file server for ed personal developers. There is a security loophole in version 1.9.1 of Copyparty, which stems from the inappropriate handling of the WEEKEND-PLANS function, which may result in a cross-site script attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-08-29

Last Modified

2026-02-24

References

https://github.com/Trinity-SYT-SECURITY/XSS_vuln_issue/blob/main/copyparty.md https://github.com/9001/copyparty https://github.com/9001/copyparty/releases/tag/v1.9.2 https://access.redhat.com/security/cve/cve-2023-41471 https://nvd.nist.gov/vuln/detail/CVE-2023-41471

Patch

https://github.com/9001/copyparty/tags