CNNVD-202510-1437 Information

CNNVD ID

CNNVD-202510-1437

Related CVE

CVE-2025-60869

• CNNVD Published: 2025-10-10

Description (Chinese)

Publii CMS是波兰Publii公司的一个静态网站生成器。 Publii CMS v0.46.5版本存在安全漏洞，该漏洞源于未清理配置字段输入，可能导致存储型跨站脚本攻击。

Description (English)

Publii CMS is a static website generator for Publii in Poland. Version Publii CMS v. 0.46.5 contains a security loophole that originates from uncleaned configuration field input and may result in a storage-type cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Publii

Published

2025-10-10

Last Modified

2026-02-24

References

https://getpublii.com/download/ https://gist.github.com/kasiasok/63f7dcc9c453857005066ee9738318a9 https://access.redhat.com/security/cve/cve-2025-60869

Patch

https://getpublii.com/download/