CNNVD-202511-519 Information

CNNVD ID

CNNVD-202511-519

Related CVE

CVE-2025-60541

• CNNVD Published: 2025-11-06

Description (Chinese)

Prompt Optimizer是且炼时光个人开发者的一款提示词优化器。 Prompt Optimizer 1.3.0版本至1.4.2版本存在安全漏洞，该漏洞源于/api/proxy组件存在服务端请求伪造，可能导致攻击者扫描内部资源。

Description (English)

Prompt Optimizer is a hint optimizer for personal time developers. Prompt Optimizer Versions 1.3.0 to 1.4.2 have a security loophole, which stems from the presence of service-end requests for forgery of the /api/proxy component, which could lead to a scanning of internal resources by the attackers.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-11-06

Last Modified

2026-02-24

References

https://github.com/linshenkx/prompt-optimizer https://github.com/linshenkx/prompt-optimizer/issues/179 https://access.redhat.com/security/cve/cve-2025-60541

Patch

https://github.com/linshenkx/prompt-optimizer/releases