CNNVD-202511-2370 Information

CNNVD ID

CNNVD-202511-2370

Related CVE

CVE-2025-13434

• CNNVD Published: 2025-11-20

Description (Chinese)

Hush Framework是james.huang个人开发者的一个Web应用框架。 Hush Framework 2.0版本存在安全漏洞，该漏洞源于HTTP主机标头中和不当，可能导致远程攻击。

Description (English)

Hush Framework is a Web application framework for james.huang personal developers. There is a security loophole in Hush Framework version 2.0, which originates from inappropriate HTTP mainframe headers and could lead to a long-range attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-11-20

Last Modified

2026-02-24

References

https://github.com/lakshayyverma/CVE-Discovery/blob/main/hush.md https://vuldb.com/?id.332978 https://vuldb.com/?submit.687568 https://vuldb.com/?ctiid.332978 https://access.redhat.com/security/cve/cve-2025-13434