Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/06/04 11:20 a.m.4 views

CVE-2025-48494

Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. When using end-to-end encryption, a stored cross-site scripting vulnerability can be exploited by uploading a file with JavaScript code embedded in the filename. After upload and every time someone opens...

4.8CVSS5.9AI score0.0014EPSS
Exploits0References1
NVD
NVD
added 2025/06/02 11:15 a.m.11 views

CVE-2025-48494

Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. When using end-to-end encryption, a stored cross-site scripting vulnerability can be exploited by uploading a file with JavaScript code embedded in the filename. After upload and every time someone opens...

5.4CVSS0.0014EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/06/02 11:3 a.m.8 views

CVE-2025-48494 Gokapi vulnerable to stored XSS via uploading file with malicious file name

Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. When using end-to-end encryption, a stored cross-site scripting vulnerability can be exploited by uploading a file with JavaScript code embedded in the filename. After upload and every time someone opens...

4.8CVSS5.9AI score0.0014EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/06/02 11:3 a.m.20 views

CVE-2025-48494 Gokapi vulnerable to stored XSS via uploading file with malicious file name

Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. When using end-to-end encryption, a stored cross-site scripting vulnerability can be exploited by uploading a file with JavaScript code embedded in the filename. After upload and every time someone opens...

4.8CVSS0.0014EPSS
Exploits0References3
Rows per page
Query Builder