CNNVD-202512-2041 Information

CNNVD ID

CNNVD-202512-2041

Related CVE

CVE-2025-34504

• CNNVD Published: 2025-12-11

Description (Chinese)

KodExplorer是warlee个人开发者的一个 web 文件管理器。 KodExplorer 4.52版本存在输入验证错误漏洞，该漏洞源于用户登录页面存在开放重定向，可能导致攻击者通过操纵link参数将用户重定向到任意外部网站。

Description (English)

KodExplorer is a web file manager for warlee personal developers. The KodExplorer 4.52 version has an input authentication error that stems from the open re-direction of the user login page, which may lead the assailant to redirect the user to any external site by manipulating the link parameter.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

个人开发者

Published

2025-12-11

Last Modified

2026-02-24

References

https://github.com/kalcaddle/KodExplorer/releases/tag/4.52 https://kodcloud.com/ https://www.exploit-db.com/exploits/52245 https://www.vulncheck.com/advisories/kodexplorer-open-redirect-vulnerability-via-user-login-endpoint