CVE-2025-51662 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A stored cross-site scripting (XSS) vulnerability is found in the text sharing feature of FileCodeBox version 2.2 and earlier. Insufficient input validation all…
Medium CVSS: 5.4

CVE-2025-51662

A stored cross-site scripting (XSS) vulnerability is found in the text sharing feature of FileCodeBox version 2.2 and earlier. Insufficient input validation allows attackers to inject arbitrary JavaScript code into shared text "codeboxes". The xss payload is automatically executed in the browsers of any users who try to access the infected codebox by clicking link or entering share code.
Vendor
Lanol
Product
Filecodebox
CWE
CWE-79
Yayın Tarihi
2025-11-19 20:15:53
Güncelleme
2025-11-24 19:40:24
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-79 Filecodebox MEDIUM Lanol 2025

Referanslar

https://github.com/vastsa/FileCodeBox https://github.com/vastsa/FileCodeBox/issues/351 https://github.com/vastsa/FileCodeBox/issues/351