Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2025-41079

Опубликовано: 04 дек. 2025
Источник: debian
EPSS Низкий

Описание

A stored Cross-Site Scripting (XSS) vulnerability has been found in Seafile v12.0.10. This vulnerability allows an attacker to execute arbitrary code in the victim's browser by storing malicious payloads with PUT parámetro 'name' in '/api/v2.1/user/'.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
seafile-serveritppackage

EPSS

Процентиль: 11%
0.00038
Низкий

Связанные уязвимости

nvd логотип

CVE-2025-41079

CVSS3: 6.1
nvd
2 месяца назад

A stored Cross-Site Scripting (XSS) vulnerability has been found in Seafile v12.0.10. This vulnerability allows an attacker to execute arbitrary code in the victim's browser by storing malicious payloads with PUT parámetro 'name' in '/api/v2.1/user/'.

github логотип

GHSA-pf6g-7xf6-4cr6

CVSS3: 6.1
github
2 месяца назад

A stored Cross-Site Scripting (XSS) vulnerability has been found in Seafile v12.0.10. This vulnerability allows an attacker to execute arbitrary code in the victim's browser by storing malicious payloads with PUT parámetro 'name' in '/api/v2.1/user/'.

EPSS

Процентиль: 11%
0.00038
Низкий