CVE-2025-54593

High CVSS: 7.2

FreshRSS is a free, self-hostable RSS aggregator. In versions 1.26.1 and below, an authenticated administrator user can execute arbitrary code on the FreshRSS server by modifying the update URL to one they control, and gain code execution after running an update. After successfully executing code, user data including hashed passwords can be exfiltrated, the instance can be defaced when file permissions allow. Malicious code can be inserted into the instance to steal plaintext passwords, among others. This is fixed in version 1.26.2.

Vendor

Freshrss

Product

Freshrss

CWE

CWE-94

Yayın Tarihi

2025-08-01 18:15:55

Güncelleme

2025-08-25 17:38:29

Source Identifier

security-advisories@github.com

KEV Date Added

Kategoriler

CWE-94 Freshrss HIGH Freshrss 2025

Referanslar

https://github.com/FreshRSS/FreshRSS/commit/dbdadbb4107878d9233f635c31a88afe45957101 https://github.com/FreshRSS/FreshRSS/pull/7477 https://github.com/FreshRSS/FreshRSS/releases/tag/1.26.2 https://github.com/FreshRSS/FreshRSS/security/advisories/GHSA-jcww-48g9-wf57

Benzer Kayıtlar

High

CVE-2025-62166

FreshRSS is a free, self-hostable RSS aggregator. Prior 1.28.0, a bug in the auth logic related to master authentication…

Medium

CVE-2025-68148

FreshRSS is a free, self-hostable RSS aggregator. From version 1.27.0 to before 1.28.0, An attacker could globally deny…

Low

CVE-2025-68932

FreshRSS is a free, self-hostable RSS aggregator. Prior to version 1.28.0, FreshRSS uses cryptographically weak random n…

Medium

CVE-2025-59949

FreshRSS is a free, self-hostable RSS aggregator. Versions prior to 1.27.1 have a logout cross-site request forgery vuln…

High

CVE-2025-58173

FreshRSS is a self-hosted RSS feed aggregator. In versions 1.23.0 through 1.27.0, using a path traversal inside the `lan…

Medium

CVE-2025-61586

FreshRSS is a free, self-hostable RSS aggregator. Versions 1.26.3 and below are vulnerable to directory enumeration by s…