Security Advisory

CVE-2025-48485

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-30 06:16:50

Last updated 2025-05-30 12:20:07

Assigner GitHub_M

State PUBLISHED

Description

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, the application is vulnerable to Cross-Site Scripting (XSS) attacks due to incorrect input validation and sanitization of user-input data when an authenticated user updates the profile of an arbitrary customer. This issue has been patched in version 1.8.180.

← Browse all CVEs View on cve.org ↗