CNNVD-202508-3584 Information
Aug 29, 2025
cve
CNNVD ID
CNNVD-202508-3584
Related CVE
- CNNVD Published: 2025-08-29
Description (Chinese)
OpenAtlas是奥地利OpenAtlas公司的一款Android非代理动态部署框架。 OpenAtlas v8.9.0版本存在跨站脚本漏洞,该漏洞源于对POST请求中用户输入的验证不足,可能导致跨站脚本攻击。
Description (English)
Open Atlas is a non-agent dynamic deployment framework for Android, an Austrian Atlas company. Release Open Atlas v8.9.0 has a cross-site script loophole, which results from inadequate validation of user input in POST requests and may result in cross-site script attacks.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
OpenAtlas
Published
2025-08-29
Last Modified
2026-02-24
References
https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-cross-site-scripting-xss-vulnerabilities-openatlas-acdh-ch https://github.com/craws/OpenAtlas https://nvd.nist.gov/vuln/detail/CVE-2025-40702
Patch
https://github.com/craws/OpenAtlas/releases
Share on: