CNNVD-202601-3335 Information

CNNVD ID

CNNVD-202601-3335

Related CVE

CVE-2026-23737

• CNNVD Published: 2026-01-21

Description (Chinese)

seroval是Alexis H. Munsayac个人开发者的一个格式化Java库。 seroval 1.4.0及之前版本存在代码问题漏洞，该漏洞源于JSON反序列化组件输入处理不当，可能导致任意JavaScript代码执行。

Description (English)

The seroval is a formatted Java bank for Alexis H. Munsayac’s personal developer. There is a code gap in seroval 1.4.0 and previous versions, which stems from the inappropriate processing of input of JSON ’ s anti-serialized components, which may lead to arbitrary JavaScript code implementation.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

个人开发者

Published

2026-01-21

Last Modified

2026-02-24

References

https://github.com/lxsmnsyc/seroval/commit/ce9408ebc87312fcad345a73c172212f2a798060 https://github.com/lxsmnsyc/seroval/security/advisories/GHSA-3rxj-6cgf-8cfw