CVE-2025-57769 | FreshRSS up to 1.26.x cross site scripting (GHSA-wm5p-7pr7-c8rw)

September 30, 2025 Yanac

A vulnerability has been found in FreshRSS up to 1.26.x and classified as problematic. This impacts an unknown function. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-57769. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More

CVE-2025-43817 | Liferay Portal/DXP Announcement Handler/Alert redirect cross site scripting
CVE-2025-59940 | mondeja mkdocs-include-markdown-plugin up to 7.1.7 input validation (ID 274)