CNNVD-202602-045 Information
CNNVD ID
CNNVD-202602-045
Related CVE
- CNNVD Published: 2026-02-02
Description (Chinese)
OpenList Frontend是OpenList Team开源的一个应用程序,保护开源项目免受基于信任的攻击。 OpenList Frontend 4.1.10之前版本存在安全漏洞,该漏洞源于默认禁用TLS证书验证,可能导致中间人攻击。
Description (English)
OpenList Front is an application of OpenList Team open source to protect open source projects from trust-based attacks. There was a security loophole in the previous version of OpenList Front 4.1.10, which stemmed from the default ban on TLS certification and could lead to an attack by an intermediary.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
OpenList Team
Published
2026-02-02
Last Modified
2026-02-24
References
https://github.com/OpenListTeam/OpenList/commit/e3c664f81d0584fbbdb86ffe6644be16259371c1 https://github.com/OpenListTeam/OpenList/releases/tag/v4.1.10 https://github.com/OpenListTeam/OpenList/security/advisories/GHSA-wf93-3ghh-h389
Patch
https://github.com/OpenListTeam/OpenList/releases
Share on: