CVE-2025-68932 | FreshRSS up to 1.27.x Challenge-Response mt_rand/uniqid weak prng (GHSA-j9wc-gwc6-p786)

A vulnerability marked as problematic has been reported in FreshRSS up to 1.27.x. This affects the function mt_rand/uniqid of the component Challenge-Response Handler. The manipulation leads to cryptographically weak prng.

This vulnerability is traded as CVE-2025-68932. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More