CVE-2025-45091

Vulnerability Description

Seafile versions 11.0.18-Pro, 12.0.10, and 12.0.10-Pro are vulnerable to a stored Cross-Site Scripting (XSS) attack. An authenticated attacker can exploit this vulnerability by modifying their username to include a malicious XSS payload in notification and activities.

Vulnerability Details

Published Date

September 15, 2025

Last Modified

September 16, 2025

Source

NVD

CVE-2025-45091

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment