CNNVD-202509-400 Information

CNNVD ID

CNNVD-202509-400

Related CVE

CVE-2025-58351

• CNNVD Published: 2025-09-03

Description (Chinese)

Outline是Outline开源的一个知识库。 Outline 0.83.0及之前版本存在跨站脚本漏洞，该漏洞源于本地文件系统存储功能存在CSP绕过。

Description (English)

Outline is an open-source knowledge base for Outline. Outline 0.83.0 and previous versions have a cross-site script loophole, which stems from the CSP circumvention of local file system storage.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

Outline

Published

2025-09-03

Last Modified

2026-02-24

References

https://github.com/outline/outline/commit/18bc93c9c207329244c6909606a2393e863892a3 https://github.com/outline/outline/releases/tag/v0.84.0 https://github.com/outline/outline/security/advisories/GHSA-gcj7-c9jv-fhgf

Patch

https://github.com/outline/outline/releases