CNNVD-202511-718 Information

CNNVD ID

CNNVD-202511-718

Related CVE

CVE-2025-64184

• CNNVD Published: 2025-11-07

Description (Chinese)

Dosage是Dosage开源的一个连环漫画下载工具。 Dosage 3.1版本及之前版本存在路径遍历漏洞，该漏洞源于HTTP Content-Type标头处理不当，可能导致任意文件写入。

Description (English)

Dosage is an open-source comic book downloader for Dosage. There is a loophole in the path of Dosage 3.1 and earlier versions, which stems from the improper handling of HTTP Content-Type header, which may lead to the writing of any document.

Hazard Level

Medium

Vulnerability Type

路径遍历

Affected Vendor

Dosage

Published

2025-11-07

Last Modified

2026-02-24

References

https://github.com/webcomics/dosage/commit/336a9684191604bc49eed7296b74bd582151181e https://github.com/webcomics/dosage/security/advisories/GHSA-4vcx-3pj3-44m7 https://access.redhat.com/security/cve/cve-2025-64184

Patch

https://github.com/webcomics/dosage/releases