CNNVD-202512-2748 Information

CNNVD ID

CNNVD-202512-2748

Related CVE

CVE-2025-66402

• CNNVD Published: 2025-12-16

Description (Chinese)

Misskey是Misskey开源的一个永久免费的开源联合社交媒体平台。 Misskey 13.0.0-beta.16版本至2025.12.0之前版本存在安全漏洞，该漏洞源于没有权限查看收藏或剪辑的参与者可以导出帖子并查看内容。

Description (English)

Misskey is a permanent, free and open-source social media platform for Misskey Open Source. Misskey 13.0.0-beta.16 to 2025.12.00 had a security loophole, which stemmed from participants who did not have access to the collection or clip to export and view the content.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Misskey

Published

2025-12-16

Last Modified

2026-02-24

References

https://github.com/misskey-dev/misskey/commit/dc77d59f8712d3fe0b73cd4af2035133839cd57b https://github.com/misskey-dev/misskey/security/advisories/GHSA-496g-mmpw-j9x3 https://access.redhat.com/security/cve/cve-2025-66402

Patch

https://misskey-hub.net/ja/