CNNVD-202511-805 Information
Nov 07, 2025
cve
CNNVD ID
CNNVD-202511-805
Related CVE
- CNNVD Published: 2025-11-07
Description (Chinese)
Onlook是Onlook开源的一个源码可视化编辑工具。 Onlook 0.2.32版本存在安全漏洞,该漏洞源于文本编辑器功能未正确清理用户输入,可能导致跨站脚本攻击。
Description (English)
OnLook is a source-based visual editing tool for OnLook open source. Onlook version 0.2.32 contains a security loophole, which stems from the fact that the text editor function did not properly clean up user input and could result in a cross-site script attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Onlook
Published
2025-11-07
Last Modified
2026-02-24
References
https://blog.soohyun.tech/CVE-2025-63785-DOM-XSS-in-Onlook-27e557175d2e80e1b210c75b77952115 https://tossbank.notion.site/DOM-XSS-in-onlook-27e557175d2e80e1b210c75b77952115
Share on: