CVE-2025-13415 | icret EasyImages up to 2.8.6 SVG Image /app/upload.php File cross site scripting (Issue 260)

A vulnerability was found in icret EasyImages up to 2.8.6. It has been classified as problematic. This affects an unknown part of the file /app/upload.php of the component SVG Image Handler. The manipulation of the argument File leads to cross site scripting.

This vulnerability is traded as CVE-2025-13415. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More