CNNVD-202602-049 Information
CNNVD ID
CNNVD-202602-049
Related CVE
- CNNVD Published: 2026-02-02
Description (Chinese)
OpenList Frontend是OpenList Team开源的一个应用程序,保护开源项目免受基于信任的攻击。 OpenList Frontend 4.1.10之前版本存在路径遍历漏洞,该漏洞源于文件操作处理程序存在路径遍历,可能导致未经授权的文件访问和操作。
Description (English)
OpenList Front is an application of OpenList Team open source to protect open source projects from trust-based attacks. OpenList Frontend 4.1.10 has a routing loophole, which stems from the existence of a routing of the file operation processor, which may lead to unauthorized document access and operation.
Hazard Level
High
Vulnerability Type
路径遍历
Affected Vendor
OpenList Team
Published
2026-02-02
Last Modified
2026-02-24
References
https://github.com/OpenListTeam/OpenList/commit/7b78fed106382430c69ef351d43f5d09928fff14 https://github.com/OpenListTeam/OpenList/releases/tag/v4.1.10 https://github.com/OpenListTeam/OpenList/security/advisories/GHSA-qmj2-8r24-xxcq
Patch
https://github.com/OpenListTeam/OpenList/releases
Share on: