2025-12-04 11:48:10
INCIBE
PUBLISHED
A stored Cross-Site Scripting (XSS) vulnerability has been found in Seafile v12.0.10. This vulnerability allows an attacker to execute arbitrary code in the victims browser by storing malicious payloads with PUT parĂ¡metro name in /api/v2.1/user/.