CVE-2025-48486 | freescout up to 1.8.179 Session::flash cross site scripting

A vulnerability was found in freescout up to 1.8.179. It has been declared as problematic. Affected by this vulnerability is the function Session::flash. The manipulation leads to cross site scripting.

This vulnerability is known as CVE-2025-48486. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More