CVE-2025-59950 | FreshRSS up to 1.26.x ui layer (GHSA-j66v-hvqx-5vh3)

September 30, 2025 Yanac

A vulnerability, which was classified as problematic, was found in FreshRSS up to 1.26.x. Impacted is an unknown function. Such manipulation leads to improper restriction of rendered ui layers.

This vulnerability is uniquely identified as CVE-2025-59950. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More

CVE-2025-61586 | FreshRSS up to 1.26.x Setting theme path traversal (GHSA-w35p-p867-qr4f)
CVE-2025-34235 | Vasion Print Virtual Appliance Host/Print Application TLS certificate validation