CVE-2025-48885

Name of the Vulnerable Software and Affected Versions application-urlshortener versions prior to 1.2.4

Description The issue allows users with view access to create arbitrary pages, including guest users who do not have existing accounts. This can lead to the creation of a large number of pages with random names, making it difficult for administrators to manage the wiki structure.

Recommendations For versions prior to 1.2.4, update to version 1.2.4 to resolve the issue. As a temporary workaround, consider restricting access to the page creation feature to prevent guest users from creating arbitrary pages until the update is applied.