Browse all 5 CVE security advisories affecting Mintlify. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Mintlify provides API documentation platforms for developers, with five CVEs recorded to date. Historically, vulnerabilities have included stored cross-site scripting (XSS) and server-side request forgery (SSRF), often stemming from improper input validation and insecure direct object references. The platform has faced security concerns related to insufficient access controls, potentially allowing privilege escalation. While no major public security incidents have been widely reported, the CVE history indicates a pattern of web application vulnerabilities typical in developer tooling. Security researchers have identified issues in documentation rendering and API endpoint handling, emphasizing the need for rigorous input sanitization and proper authentication mechanisms in developer-focused platforms.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-67846 | Mintlify 安全漏洞 — Mintlify PlatformCWE-472 | 4.9 | Medium | 2025-12-19 |
| CVE-2025-67844 | Mintlify 安全漏洞 — Mintlify PlatformCWE-425 | 5.0 | Medium | 2025-12-19 |
| CVE-2025-67842 | Mintlify 安全漏洞 — Mintlify PlatformCWE-829 | 6.4 | Medium | 2025-12-19 |
| CVE-2025-67845 | Mintlify 安全漏洞 — Mintlify PlatformCWE-24 | 6.4 | Medium | 2025-12-19 |
| CVE-2025-67843 | Mintlify 安全漏洞 — Mintlify PlatformCWE-1336 | 8.3 | High | 2025-12-19 |
This page lists every published CVE security advisory associated with Mintlify. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.