CNNVD-202509-279 Information
Sep 03, 2025
cve
CNNVD ID
CNNVD-202509-279
Related CVE
- CNNVD Published: 2025-09-03
Description (Chinese)
Mautic是Mautic开源的一款开源的营销自动化软件。该软件能够监控管理网站、发送电子邮件并管理客户资源。 Mautic存在安全漏洞,该漏洞源于用户提供的输入在服务器响应中未经适当清理或转义即反射回响应,可能导致反射型跨站脚本攻击。
Description (English)
Mautic is an open source marketing automation software. The software is capable of monitoring and managing the website, sending e-mails and managing client resources. There is a security loophole in Mautic, which arises from user-provided input that reflected back responses without proper clean-up or conversion of the server response, which could lead to a cross-script attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Mautic
Published
2025-09-03
Last Modified
2026-02-24
References
https://github.com/mautic/mautic/security/advisories/GHSA-9v8p-m85m-f7mm
Patch
https://github.com/mautic/mautic/releases
Share on: