CVE-2025-68116

CVE-2025-68116 (FileRise) : Versions prior to 2.7.1 are vulnerable to Stored Cross-Site Scripting due to unsafe handling of browser-renderable uploads. An attacker with a crafted SVG or HTML file stored in a FileRise instance can trigger JavaScript execution when a victim opens a generated share ...