Vulnerability Database

321,822

Total vulnerabilities in the database

CVE-2025-65017

Decidim is a participatory democracy framework. In versions from 0.30.0 to before 0.30.4 and from 0.31.0.rc1 to before 0.31.0, the private data exports can lead to data leaks in case the UUID generation, causing collisions for the generated UUIDs. This issue has been patched in versions 0.30.4 and 0.31.0.

Published: Feb 3, 2026
Updated: Feb 4, 2026
CVE: CVE-2025-65017
Exploit:

No technical information available.

CWEs:

CWE-200
CWE-703

Affected Software
References

No affected software listed.

https://github.com/decidim/decidim/pull/13571
https://github.com/decidim/decidim/releases/tag/v0.30.4
https://github.com/decidim/decidim/releases/tag/v0.31.0
https://github.com/decidim/decidim/security/advisories/GHSA-3cx6-j9j4-54mp

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo