Vulnerabilities

CVE-2025-66402 - misskey.js's export data contains private post data

2025-12-16 0 views admin

CVE ID : CVE-2025-66402 Published : 15 Dec 2025, 11:09 p.m. | 27 minutes ago Description : Misskey is an open source, federated social media platform. Starting in version 13.0.0-beta.16 and prior to version 2025.12.0, an actor who does not have permission to view favorites or clips can can export the posts and view the contents. Version 2025.12.0 fixes the issue. Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2025-66402

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-66402

CVE-2025-66402 - misskey.js's export data contains private post data

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2025-62330 - HCL DevOps Deploy is susceptible to a cleartext transmission of sensitive inform...

CVE-2025-66635 - Seiko Epson Web Config Stack-based Buffer Overflow Vulnerability

CVE-2025-13439 - Fancy Product Designer | WooCommerce WordPress <= 6.4.8 - unauthenticated inform...

CVE-2025-11991 - JetFormBuilder <= 3.5.3 - missing authorization to unauthenticated form generation

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting