CNNVD-202512-3320 Information

CNNVD ID

CNNVD-202512-3320

Related CVE

CVE-2025-14700

• CNNVD Published: 2025-12-17

Description (Chinese)

Crafty Controller是Arcadia的一个 Minecraft 服务器控制面板/启动器。 Crafty Controller存在安全漏洞，该漏洞源于Webhook Template组件输入中和不当，可能导致通过服务器端模板注入进行远程代码执行。

Description (English)

Crafty Contractor is a Minecraft server control panel/starter in Arcadia. There is a security loophole in Crafty Contractor, which stems from inappropriate input of the Webbook Template component, which may lead to remote code implementation via server-end templates.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Arcadia

Published

2025-12-17

Last Modified

2026-02-24

References

https://gitlab.com/crafty-controller/crafty-4/-/issues/646 https://access.redhat.com/security/cve/cve-2025-14700