CNNVD-202512-4866 Information

CNNVD ID

CNNVD-202512-4866

Related CVE

CVE-2025-15151

• CNNVD Published: 2025-12-28

Description (Chinese)

Lin-CMS是TaleLin开源的一个内容管理系统后端项目。 Lin-CMS 0.6.0及之前版本存在安全漏洞，该漏洞源于文件/tests/config.py中对参数username/password的错误操作，可能导致配置文件中的密码泄露。

Description (English)

Lin-CMS is a content management system backend project for TaleLin open source. There is a security loophole in Lin-CMS 0.6.0 and previous versions, which stems from the error in the username/password of the parameter in the file/tests/config.py, which may lead to the leaking of the password in the configuration file.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

林间有风

Published

2025-12-28

Last Modified

2026-02-24

References

https://github.com/m3ngx1ng/cve/blob/4690d4020a4a642af4c50912f762937292228641/lin-cms.md https://vuldb.com/?id.338528 https://vuldb.com/?ctiid.338528 https://vuldb.com/?submit.721893 https://access.redhat.com/security/cve/cve-2025-15151