Security Advisory

CVE-2025-13415

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-19 22:02:06

Last updated 2025-11-20 15:41:18

Assigner VulDB

State PUBLISHED

Description

A vulnerability was identified in icret EasyImages up to 2.8.6. This affects an unknown part of the file /app/upload.php of the component SVG Image Handler. The manipulation of the argument File leads to cross site scripting. It is possible to initiate the attack remotely.

← Browse all CVEs View on cve.org ↗