CNNVD-202511-366 Information
Nov 05, 2025
cve
CNNVD ID
CNNVD-202511-366
Related CVE
- CNNVD Published: 2025-11-05
Description (Chinese)
Open Source Social Network(OSSN)是瑞士OSSN团队的一款源社交网络引擎。 Open Source Social Network(OSSN) 8.6版本存在安全漏洞,该漏洞源于对文件/action/rtcomments/status中参数timestamp的错误操作,可能导致SQL注入攻击。
Description (English)
Open Source Social Network (OSSN) is a source social networking engine for the Swiss OSSN team. Open Source Social Network (OSSN) version 8.6 contains a security loophole, which results from a mishandling of the parameter timestamp in the document/action/rtcomments/status, which could lead to an attack on SQL injection.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
OSSN
Published
2025-11-05
Last Modified
2026-02-24
References
https://github.com/opensource-socialnetwork/opensource-socialnetwork https://github.com/opensource-socialnetwork/opensource-socialnetwork/issues/2503
Patch
https://www.opensource-socialnetwork.org/
Share on: