CNNVD-202509-4408 Information
Sep 29, 2025
cve
CNNVD ID
CNNVD-202509-4408
Related CVE
- CNNVD Published: 2025-09-29
Description (Chinese)
Apt-Cacher-NG是Apt-Cacher-NG开源的一个缓存代理服务。 Apt-Cacher-NG 3.2.1版本存在跨站脚本漏洞,该漏洞源于对文件/acng-report.html中URL包含的GET输入处理不当,可能导致反射型跨站脚本攻击。
Description (English)
Apt-Cacher-NG is a cache agent service for the Apt-Cacher-NG open source. The Apt-Cacher-NG 3.2.1 version has a cross-site script loophole, which results from the inappropriate handling of the GET input contained in URL in document /acng-report.html, which may result in a cross-script attack.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
Apt-Cacher-NG
Published
2025-09-29
Last Modified
2026-02-24
References
https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-apt-cacher-ng
Patch
https://salsa.debian.org/blade/apt-cacher-ng/-/tags
Share on: