Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/27 4:11 a.m.18 views

CVE-2025-27145

copyparty, a portable file server, has a DOM-based cross-site scripting vulnerability in versions prior to 1.16.15. The vulnerability is considered low-risk. By handing someone a maliciously-named file, and then tricking them into dragging the file into copyparty's Web-UI, an attacker could execu...

6.1CVSS6.5AI score0.00426EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/02/25 1:36 a.m.14 views

CVE-2025-27145 copyparty renders unsanitized filenames as HTML when user uploads empty files

copyparty, a portable file server, has a DOM-based cross-site scripting vulnerability in versions prior to 1.16.15. The vulnerability is considered low-risk. By handing someone a maliciously-named file, and then tricking them into dragging the file into copyparty's Web-UI, an attacker could execu...

3.6CVSS0.00426EPSS
Exploits1References3
CVE
CVE
added 2025/02/25 1:36 a.m.88 views

CVE-2025-27145

The CVE-2025-27145 entry relates to copyparty, a portable file server, with a DOM-based XSS vulnerability in versions prior to 1.16.15. The issue is triggered during drag-and-drop of a maliciously named, empty file into the Web-UI, causing arbitrary JavaScript execution with the user’s privileges...

6.1CVSS6.8AI score0.00426EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/25 1:36 a.m.11 views

CVE-2025-27145 copyparty renders unsanitized filenames as HTML when user uploads empty files

copyparty, a portable file server, has a DOM-based cross-site scripting vulnerability in versions prior to 1.16.15. The vulnerability is considered low-risk. By handing someone a maliciously-named file, and then tricking them into dragging the file into copyparty's Web-UI, an attacker could execu...

3.6CVSS4.3AI score0.00426EPSS
Exploits1References3
Circl
Circl
added 2025/02/25 1:31 a.m.4 views

CVE-2025-27145

creationtimestamp| type| source ---|---|--- 2025-02-25 01:31:40+00:00| published-proof-of-concept| https://github.com/9001/copyparty/security/advisories/GHSA-m2jw-cj8v-937r 2025-02-25 04:49:57+00:00| seen| https://t.me/cvedetector/18848...

6.1CVSS5.7AI score0.00426EPSS
Exploits1References2
Rows per page
Query Builder