CNNVD-202511-059 Information
CNNVD ID
CNNVD-202511-059
Related CVE
- CNNVD Published: 2025-11-03
Description (Chinese)
Open Source Social Network(OSSN)是瑞士OSSN团队的一款源社交网络引擎。 Open Source Social Network(OSSN) 8.6版本存在安全漏洞,该漏洞源于对端点u/administrator/friends中参数param的错误操作,可能导致跨站脚本攻击。
Description (English)
Open Source Social Network (OSSN) is a source social networking engine for the Swiss OSSN team. Release 8.6 of Open Source Social Network (OSSN) contains a security loophole resulting from the wrong operation of Param, the parameter in the endpoint u/administrator/friends, which may result in a cross-site script attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
OSSN
Published
2025-11-03
Last Modified
2026-02-24
References
https://github.com/opensource-socialnetwork/opensource-socialnetwork/issues/2501 https://github.com/opensource-socialnetwork/opensource-socialnetwork/releases/tag/8.6 https://www.opensource-socialnetwork.org/discussion/view/7663/open-source-social-network-ossn-86-has-been-released https://access.redhat.com/security/cve/cve-2025-63441
Patch
https://github.com/opensource-socialnetwork/opensource-socialnetwork/releases
Share on: