CNNVD-202509-2008 Information

CNNVD ID

CNNVD-202509-2008

Related CVE

CVE-2025-10472

• CNNVD Published: 2025-09-15

Description (Chinese)

MoneyPrinterTurbo是Harry个人开发者的一个利用AI大模型生成高清短视频的软件。 MoneyPrinterTurbo 1.2.6及之前版本存在路径遍历漏洞，该漏洞源于对文件app/controllers/v1/video.py中参数file_path的错误操作，可能导致路径遍历攻击。

Description (English)

MoneyPrinturbo is a software for Harry’s personal developer to generate high-resolution short videos using a large AI model. MoneyPrinturbo 1.2.6 and previous versions have path-to-path loopholes, which stem from an error in the application of the parameter fileapp/controlrs/v1/video.py to file file path, which may lead to a path-to-path attack.

Hazard Level

High

Vulnerability Type

路径遍历

Affected Vendor

个人开发者

Published

2025-09-15

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.323892 https://vuldb.com/?id.323892 https://vuldb.com/?submit.648393 https://www.notion.so/Path-Traversal-Vulnerability-in-MoneyPrinterTurbo-1-2-6-265014c4d9ca80e38da4deaeee8b46f5?source=copy_link