Security Advisory

CVE-2025-46011

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-04 00:00:00
Last updated 2025-06-09 20:56:28
Assigner mitre
State PUBLISHED

Description

Listmonk v4.1.0 (fixed in v5.0.0) is vulnerable to SQL Injection in the QuerySubscribers function which allows attackers to escalate privileges.