CVE-2025-54597 | LinuxServer.io Heimdall up to 2.7.2 q cross site scripting

A vulnerability, which was classified as problematic, was found in LinuxServer.io Heimdall up to 2.7.2. Affected is an unknown function. The manipulation of the argument q leads to cross site scripting.

This vulnerability is traded as CVE-2025-54597. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More