Security Advisory

CVE-2025-47929

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-15 20:11:55

Last updated 2025-05-28 19:55:21

Assigner GitHub_M

State PUBLISHED

Description

DumbDrop, a file upload application that provides an interface for dragging and dropping files, has a DOM cross-site scripting vulnerability in the upload functionality prior to commit db27b25372eb9071e63583d8faed2111a2b79f1b. A user could be tricked into uploading a file with a malicious payload. Commit db27b25372eb9071e63583d8faed2111a2b79f1b fixes the vulnerability.

← Browse all CVEs View on cve.org ↗