CNNVD-202510-752 Information

CNNVD ID

CNNVD-202510-752

Related CVE

CVE-2025-11276

• CNNVD Published: 2025-10-05

Description (Chinese)

Rebuild是getrebuild开源的一个高度可定制化的企业管理系统。 Rebuild 4.1.3及之前版本存在代码注入漏洞，该漏洞源于对Comment/Guestbook组件操作不当，可能导致跨站脚本攻击。

Description (English)

Rebuild is a highly customized enterprise management system for the open source of Getrebuild. Rebuild 4.1.3 and previous versions had a code-injecting loophole, which stemmed from inappropriate operation of the Comment/Guestbook component and could result in a cross-site script attack.

Hazard Level

Critical

Vulnerability Type

代码注入

Affected Vendor

getrebuild

Published

2025-10-05

Last Modified

2026-02-24

References

https://gitee.com/getrebuild/rebuild/releases/tag/4.1.4 https://vuldb.com/?ctiid.327010 https://vuldb.com/?id.327010 https://vuldb.com/?submit.658910

Patch

https://gitee.com/getrebuild/rebuild