CNNVD-202509-432 Information

CNNVD ID

CNNVD-202509-432

Related CVE

CVE-2025-58353

• CNNVD Published: 2025-09-04

Description (Chinese)

Promptcraft Forge Studio是Marcelo Tessaro个人开发者的一个开发者工具包。 Promptcraft Forge Studio存在安全漏洞，该漏洞源于使用正则表达式黑名单清理用户输入不当，可能导致执行恶意有效载荷。

Description (English)

Promptcraft Forge Studio is a developer toolkit for Marcelo Tessaro’s personal developer. There is a security loophole in Promptcraft Forge Studio, which stems from the use of regular expression blacklists to clean up inappropriate user input, which may lead to the implementation of malicious payloads.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-09-04

Last Modified

2026-02-24

References

https://github.com/MarceloTessaro/promptcraft-forge-studio/security/advisories/GHSA-mv25-7v95-q3pf