Vulnerabilities

CVE-2025-1983

by Fred · 16/04/2025

A cross-site scripting (XSS) vulnerability in Ready_’s File Explorer upload functionality allows injection of arbitrary JavaScript code in filename. Injected content is stored on server and is executed every time a user interacts with the uploaded file.

More information : https://cert.pl/en/posts/2025/04/CVE-2025-1980

Similar

Tags: Cybersecurity Alert