CNNVD-202510-1128 Information

CNNVD ID

CNNVD-202510-1128

Related CVE

CVE-2025-61788

• CNNVD Published: 2025-10-08

Description (Chinese)

Opencast是Opencast组织的一款用于大规模自动视频捕获，管理和分发的直播视频支撑软件。 Opencast 17.8之前版本和18.2之前版本存在跨站脚本漏洞，该漏洞源于未过滤用户输入，可能导致跨站脚本攻击。

Description (English)

Opencast is a live video support software for large-scale automatic video capture, managed and distributed by Opencast. Before and before Opencast 17.8 and 18.2, there was a cross-site script loophole, which originated from unfiltered user input and could lead to cross-site script attacks.

Hazard Level

High

Vulnerability Type

跨站脚本

Affected Vendor

Opencast

Published

2025-10-08

Last Modified

2026-02-24

References

https://github.com/opencast/opencast/commit/2809520fa88d108d8104c760f00c10bad42c14f9 https://github.com/opencast/opencast/security/advisories/GHSA-m2vg-rmq6-p62r

Patch

https://opencast.org/