CNNVD-202512-4849 Information

CNNVD ID

CNNVD-202512-4849

Related CVE

CVE-2025-15105

• CNNVD Published: 2025-12-27

Description (Chinese)

Maxun是Maxun开源的一个爬虫工具。 Maxun 0.0.28及之前版本存在安全漏洞，该漏洞源于对文件/getmaxun/maxun/blob/develop/server/src/routes/auth.ts中参数api_key的错误操作，可能导致使用硬编码密钥。

Description (English)

Maxun is a reptile tool in Maxun’s open source. Maxun 0.0.28 and previous versions had a security loophole, which stemmed from an error in the argument api key in file/getmaxun/maxun/blob/development/server/src/routes/auth.ts, which could lead to the use of hard-coding keys.

Hazard Level

Critical

Affected Vendor

Maxun

Published

2025-12-27

Last Modified

2026-02-24

References

https://vuldb.com/?id.338476 https://gist.github.com/H2u8s/40be31987e52fc81076b6bfcfbdf3cd6 https://vuldb.com/?ctiid.338476 https://vuldb.com/?submit.710256 https://access.redhat.com/security/cve/cve-2025-15105

Patch

https://github.com/getmaxun/maxun/releases