CVE-2025-68148 | FreshRSS 1.27.x allocation of resources (GHSA-qw34-frg7-gf78)

December 27, 2025 Yanac

A vulnerability labeled as problematic has been found in FreshRSS 1.27.x. The impacted element is an unknown function. Executing manipulation can lead to allocation of resources.

This vulnerability appears as CVE-2025-68148. The attack may be performed from remote. There is no available exploit.

The affected component should be upgraded.VulDB Recent EntriesRead More

CVE-2025-68932 | FreshRSS up to 1.27.x Challenge-Response mt_rand/uniqid weak prng (GHSA-j9wc-gwc6-p786)
CVE-2025-59946 | nanomq up to 0.24.3 Sub Info List use after free (ID 1863)