CNNVD-202512-141 Information
Dec 01, 2025
cve
CNNVD ID
CNNVD-202512-141
Related CVE
- CNNVD Published: 2025-12-01
Description (Chinese)
MediaCrush是以色列MediaCrush公司的一个媒体托管和共享平台。 MediaCrush 1.0.0版本和1.0.1版本存在安全漏洞,该漏洞源于文件/mediacrush/paths.py中参数Host的错误操作,可能导致HTTP标头中和不当。
Description (English)
MediaCrush is a media hosting and sharing platform for MediaCrush in Israel. There is a security loophole in MedicaCrush Versions 1.0.0 and 1.0.1, which stems from the error of Host, the parameter in the document/mediaCrush/paths.py, which may lead to the misdirection of HTTP.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
MediaCrush
Published
2025-12-01
Last Modified
2026-02-24
References
https://vuldb.com/?id.333813 https://github.com/lakshayyverma/CVE-Discovery/blob/main/mediacrush.md https://vuldb.com/?submit.691857 https://vuldb.com/?ctiid.333813 https://access.redhat.com/security/cve/cve-2025-13803
Share on: