Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-pf6g-7xf6-4cr6

Опубликовано: 04 дек. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 5.1
CVSS3: 6.1

Описание

A stored Cross-Site Scripting (XSS) vulnerability has been found in Seafile v12.0.10. This vulnerability allows an attacker to execute arbitrary code in the victim's browser by storing malicious payloads with PUT parámetro 'name' in '/api/v2.1/user/'.

A stored Cross-Site Scripting (XSS) vulnerability has been found in Seafile v12.0.10. This vulnerability allows an attacker to execute arbitrary code in the victim's browser by storing malicious payloads with PUT parámetro 'name' in '/api/v2.1/user/'.

Ссылки

EPSS

Процентиль: 11%
0.00038
Низкий

5.1 Medium

CVSS4

6.1 Medium

CVSS3

CVE ID

CVE-2025-41079

Дефекты

CWE-79

Связанные уязвимости

nvd логотип

CVE-2025-41079

CVSS3: 6.1
nvd
2 месяца назад

A stored Cross-Site Scripting (XSS) vulnerability has been found in Seafile v12.0.10. This vulnerability allows an attacker to execute arbitrary code in the victim's browser by storing malicious payloads with PUT parámetro 'name' in '/api/v2.1/user/'.

debian логотип

CVE-2025-41079

CVSS3: 6.1
debian
2 месяца назад

A stored Cross-Site Scripting (XSS) vulnerability has been found in Se ...

EPSS

Процентиль: 11%
0.00038
Низкий

5.1 Medium

CVSS4

6.1 Medium

CVSS3

CVE ID

CVE-2025-41079

Дефекты

CWE-79