CNNVD-202601-1876 Information
Jan 12, 2026
cve
CNNVD ID
CNNVD-202601-1876
Related CVE
- CNNVD Published: 2026-01-12
Description (Chinese)
Termix是Karmaa个人开发者的一个服务器管理平台。 Termix 1.7.0版本至1.9.0版本存在安全漏洞,该漏洞源于文件管理器组件渲染SVG文件前未清理内容,可能导致存储型跨站脚本攻击。
Description (English)
Termix is a server management platform for Karmaa personal developers. There is a security loophole between Release 1.7.0 and Version 1.9.0, which stems from the uncleaned content of the SVG component prior to the rendering of the SVG file, which may result in a storage-type cross-site script attack.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2026-01-12
Last Modified
2026-02-24
References
https://github.com/Termix-SSH/Termix/security/advisories/GHSA-m3cv-5hgp-hv35
Patch
https://github.com/Termix-SSH/Termix/releases
Share on: