CVE-2025-59949

Publication date

2025-12-18 18:31:54

Family

GitHub_M

State

PUBLISHED

Description

FreshRSS is a free, self-hostable RSS aggregator. Versions prior to 1.27.1 have a logout cross-site request forgery vulnerability that can lead to denial of service via . Version 1.27.1 patches the issue.