CNNVD-202602-1254 Information

CNNVD ID

CNNVD-202602-1254

Related CVE

CVE-2026-25925

• CNNVD Published: 2026-02-09

Description (Chinese)

PowerDocu是Rene Modery个人开发者的一个画布生成软件。 PowerDocu 2.4.0之前版本存在代码问题漏洞，该漏洞源于解析JSON文件时盲目信任$type属性，可能导致代码执行。

Description (English)

PowerDocu is a canvas-generated software for Rene Modery’s personal developer. PowerDocu 2.4.0 has a code problem loophole, which stems from blind trust in the $type properties when deconstructing JSON files and may lead to code execution.

Vulnerability Type

代码问题

Affected Vendor

个人开发者

Published

2026-02-09

Last Modified

2026-02-24

References

https://github.com/modery/PowerDocu/releases/tag/v-2.4.0 https://github.com/modery/PowerDocu/security/advisories/GHSA-m8j2-5jr7-2jpw

Patch

https://github.com/modery/PowerDocu/releases