CNNVD-202511-1909 Information

CNNVD ID

CNNVD-202511-1909

Related CVE

CVE-2025-63708

• CNNVD Published: 2025-11-17

Description (Chinese)

SourceCodester AI Font Matcher是SourceCodester开源的一个ai字体识别器。 SourceCodester AI Font Matcher存在安全漏洞，该漏洞源于字体家族名称清理不当，可能导致跨站脚本攻击。

Description (English)

SourceCodester AI Font Matcher is an ai font identifier for the Open Source of SourceCodester. There is a security loophole in SourceCodester AI Font Matcher, which stems from the inappropriate cleaning of font family names, which may lead to a cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

SourceCodester

Published

2025-11-17

Last Modified

2026-02-24

References

https://github.com/DylanDavis1/CVE-2025-64708 https://www.sourcecodester.com/javascript/18425/ai-font-matcher-using-html-css-and-javascript-source-code.html https://access.redhat.com/security/cve/cve-2025-63708