CNNVD-202509-934 Information
Sep 05, 2025
cve
CNNVD ID
CNNVD-202509-934
Related CVE
- CNNVD Published: 2025-09-05
Description (Chinese)
Obsidian GitHub Copilot Plugin是Pierre-Adrien Vasseur个人开发者的一个Github Copilot插件。 Obsidian GitHub Copilot Plugin 1.1.7之前版本存在安全漏洞,该漏洞源于以明文形式存储Github API令牌,可能导致对链接的Github账户执行未授权操作。
Description (English)
Obsidian GitHub Copilot Plugin is a Github Copilot plugin for Pierre-Adrien Vasseur’s personal developer. There was a security loophole in the previous version of Obsidian GitHub Copilot Plugin 1.1.7 that originated from the explicit storage of Github API tokens, which could lead to unauthorized operations on the linked Github account.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2025-09-05
Last Modified
2026-02-24
References
https://github.com/Pierrad/obsidian-github-copilot/releases/tag/1.1.7 https://jvn.jp/en/jp/JVN41633999/
Patch
https://github.com/Pierrad/obsidian-github-copilot/releases
Share on: