Cross-site scripting vulnerability in Plane allows SVG uploads with malicious code in profiles.
Reporter | Title | Published | Views | Family All 3 |
---|---|---|---|---|
CVE | CVE-2025-21616 | 6 Jan 202522:15 | – | cve |
NVD | CVE-2025-21616 | 6 Jan 202522:15 | – | nvd |
Cvelist | CVE-2025-21616 Plane has a Cross-site scripting (XSS) via SVG image upload | 6 Jan 202521:22 | – | cvelist |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo