CNNVD-202510-2723 Information

CNNVD ID

CNNVD-202510-2723

Related CVE

CVE-2025-8050

• CNNVD Published: 2025-10-21

Description (Chinese)

OpenText Flipper是加拿大OpenText公司的一个供应商自助提交发票的门户扩展包。 OpenText Flipper 3.1.2版本存在安全漏洞，该漏洞源于外部文件名或路径控制不当，可能导致路径遍历攻击。

Description (English)

OpenText Flopper is a portal extension for the self-service submission of invoices by a supplier from OpenText Canada. There is a security loophole in OpenText Flipper 3.1.2, which stems from inadequate control of an external file name or path, which could lead to a path attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

OpenText

Published

2025-10-21

Last Modified

2026-02-24

References

https://support.opentext.com/csm?id=ot_kb_unauthenticated&sysparm_article=KB0850526 https://access.redhat.com/security/cve/cve-2025-8050