CNNVD-202510-3244 Information

CNNVD ID

CNNVD-202510-3244

Related CVE

CVE-2025-60852

• CNNVD Published: 2025-10-23

Description (Chinese)

Instant Developer Foundation是意大利Instant Developer公司的一款低代码应用开发平台。 Instant Developer Foundation 25.0.9600之前版本存在安全漏洞，该漏洞源于未正确清理用户控制的输入，可能导致代码执行。

Description (English)

The Instant Development Foundation is a low-code application development platform for the Italian company Instant Devloper. There was a security loophole in the previous version of Instant Development Foundation 25.9600, which originated from an incorrect clean-up of user-controlled inputs, which could lead to code implementation.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Instant Developer

Published

2025-10-23

Last Modified

2026-02-24

References

https://doc.instantdeveloper.com/eng/default.aspx?artid=a6c69034-d1ee-4057-b19d-40505151ec8e&lang=eng https://github.com/valeriocassoni/CSV-Injection-in-Instant-Developer-Foundation-25.0-PoC https://instantdeveloper.com/lp/cloud-freelance/index.html https://access.redhat.com/security/cve/cve-2025-60852

Patch

https://doc.instantdeveloper.com/eng/default.aspx?artid=a6c69034-d1ee-4057-b19d-40505151ec8e&lang=eng