CVE ID : CVE-2025-32015
Published : June 4, 2025, 8:15 p.m. | 3 hours, 22 minutes ago
Description : FreshRSS is a self-hosted RSS feed aggregator. Prior to version 1.26.2, HTML is sanitized improperly inside the “ attribute, which leads to cross-site scripting (XSS) by loading an attacker’s UserJS inside `
Source: Read More