CNNVD-202602-2070 Information

CNNVD ID

CNNVD-202602-2070

Related CVE

CVE-2025-70845

• CNNVD Published: 2026-02-12

Description (Chinese)

aidigu（爱嘀咕）是SR.李（lty628）个人开发者的一个开源微博项目。 aidigu 1.9.1版本存在安全漏洞，该漏洞源于/setting/页面中的intro字段清理和转义不足，可能导致跨站脚本攻击。

Description (English)

Aedigu (Ligu) is an open-source microblogging project for the personal developer of SR.lty628. There is a security loophole in version 1.9.1 resulting from inadequate intro field clean-up and conversion on /setting/page, which could lead to cross-site script attacks.

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-02-12

Last Modified

2026-02-24

References

https://github.com/lty628/aidigu https://github.com/J4cky1028/vulnerability-research/tree/main/CVE-2025-70845 https://access.redhat.com/security/cve/cve-2025-70845

Patch

https://github.com/lty628/aidigu/releases