CNNVD-202512-3730 Information

CNNVD ID

CNNVD-202512-3730

Related CVE

CVE-2025-67843

• CNNVD Published: 2025-12-19

Description (Chinese)

Mintlify是美国Mintlify公司的一个AI驱动的文档平台。 Mintlify 2025-11-15之前版本存在安全漏洞，该漏洞源于MDX Rendering Engine中服务器端模板注入，可能导致执行任意代码。

Description (English)

Mintlifty is an AI-driven document platform for Mintlifty in the United States. There was a security loophole in the pre-Mintlify 2025-11-15 version, which originated from the injection of server-end templates in MDX Rendering Engineering, which could lead to the implementation of any code.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Mintlify

Published

2025-12-19

Last Modified

2026-02-24

References

https://kibty.town/blog/mintlify/ https://news.ycombinator.com/item?id=46317098 https://www.mintlify.com/blog/working-with-security-researchers-november-2025 https://www.mintlify.com/docs/changelog https://access.redhat.com/security/cve/cve-2025-67843

Patch

https://www.mintlify.com/