CNNVD-202512-5078 Information

CNNVD ID

CNNVD-202512-5078

Related CVE

CVE-2025-66823

• CNNVD Published: 2025-12-30

Description (Chinese)

TrueConf Server是俄罗斯TrueConf公司的一种自托管和安全的视频协作平台。 TrueConf server 5.5.2.10813版本存在安全漏洞，该漏洞源于会议描述字段存在HTML注入，可能导致注入任意HTML。

Description (English)

TrueConf Server is a self-hosted and secure video-collaboration platform for TrueConf, Russia. TrueConf server 5.5.2.108113 has a security loophole, which stems from the HTML injection in the conference description field, which could lead to the injection of any type of HTML.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

TrueConf

Published

2025-12-30

Last Modified

2026-02-24

References

https://github.com/x00nullbit/CVE-References/blob/main/CVE-2025-66823/README.md https://trueconf.com https://access.redhat.com/security/cve/cve-2025-66823

Patch

https://trueconf.com/products/tcsf/trueconf-server-free.html