CNNVD-202510-1662 Information

CNNVD ID

CNNVD-202510-1662

Related CVE

CVE-2025-61775

• CNNVD Published: 2025-10-13

Description (Chinese)

Vickey是Whimsies YATeam开源的一个微博平台。 Vickey 2025.10.0之前版本存在安全漏洞，该漏洞源于未过期的电子邮件确认链接可被重复使用，可能导致已验证电子邮件地址接收重复确认消息。

Description (English)

Vikey is a microblogging platform open to Whimses YaTeam. A security loophole existed in the pre-Vickey 2025.10.0 version, which stemmed from the fact that an unexpired e-mail confirmation link could be reused and could lead to a validated e-mail address receiving a duplicate confirmation message.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Whimsies YATeam

Published

2025-10-13

Last Modified

2026-02-24

References

https://github.com/Whimsies-YAT/Vickey/security/advisories/GHSA-q6hp-37x8-fhm7 https://access.redhat.com/security/cve/cve-2025-61775

Patch

https://github.com/Whimsies-YAT/Vickey/releases