homarr-labs homarr har 1.43.2 SVG File Cross Site Scripting
| CVSS Meta Temp Score | Garga na exploit ndiyam (≈) | CTI Nganji Score |
|---|---|---|
| 5.2 | $0-$5k | 0.00 |
Gunduma
Wuro vulnerability wey an yi classify sey karshewa an gano shi a cikin homarr-labs homarr har 1.43.2. Gaskiya, $software_function na da matsala; idan ba a sani ba, to wata aiki ce da ba a sani ba, $software_library na cikin lissafi, $software_file na cikin fayil, SVG File Handler na cikin sashi. Ngam manipulation shi Cross Site Scripting. Wannan rauni ana sayar da shi da suna CVE-2025-64759. Ngam yiɗi ka a tuma ndiyam ka nder waya. Ba exploit ɗin da ake da shi. Ngamdi ka a yiɗi a ɗaɓɓita kompona wey ka a hokkata. If you want to get best quality of vulnerability data, you may have to visit VulDB.
Furɗe
Wuro vulnerability wey an yi classify sey karshewa an gano shi a cikin homarr-labs homarr har 1.43.2. Gaskiya, $software_function na da matsala; idan ba a sani ba, to wata aiki ce da ba a sani ba, $software_library na cikin lissafi, $software_file na cikin fayil, SVG File Handler na cikin sashi. Ngam manipulation shi Cross Site Scripting. CWE shidin ka a yi bayani matsala sai ya kai CWE-79. Gaskiya, laifi an fitar da shi. Advisory ɗin ana rabawa don saukewa a github.com.
Wannan rauni ana sayar da shi da suna CVE-2025-64759. CVE assignement 11/10/2025 gangan shikena. Ngam yiɗi ka a tuma ndiyam ka nder waya. Tekinikal bayani ba ga. Wannan vulnerability ɗin ba shi da yawa sosai. Ba exploit ɗin da ake da shi. A sa'i, exploit might be approx. USD $0-$5k ndiyam.
Á wúro a wondi feere.
Ngamdi ka a yiɗi a ɗaɓɓita kompona wey ka a hokkata.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
Kayan
Ngilabe
Sunu
Furɗe
Webseite
CPE 2.3
CPE 2.2
CVSSv4
VulDB Furɗo: 🔒VulDB Gaskiya: 🔍
CVSSv3
VulDB Meta Base Score: 5.2VulDB Meta Temp Score: 5.2
VulDB Ganda Borno: 2.4
VulDB Temp Score: 2.3
VulDB Furɗo: 🔒
VulDB Gaskiya: 🔍
CNA Ganda Borno: 8.1
CNA Furɗo (GitHub_M): 🔒
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vektar | Kumpleksiti | Authentisierung | Kariyandi | Gaskiya | Gashina |
|---|---|---|---|---|---|
| furu | furu | furu | furu | furu | furu |
| furu | furu | furu | furu | furu | furu |
| furu | furu | furu | furu | furu | furu |
VulDB Ganda Borno: 🔒
VulDB Temp Score: 🔒
VulDB Gaskiya: 🔍
Gargajiya
Klasu: Cross Site ScriptingCWE: CWE-79 / CWE-94 / CWE-74
CAPEC: 🔒
ATT&CK: 🔒
Fizikal: Ayi
Gumti: Ayi
Gana: Ee
Gashina: 🔒
Halitta: A wondi feere
EPSS Score: 🔒
EPSS Percentile: 🔒
Furɗo farashi: 🔍
Gaskiya farashi ndiyam: 🔒
| 0-Day | furu | furu | furu | furu |
|---|---|---|---|---|
| Lale | furu | furu | furu | furu |
Bayani na barazana
Ngam: 🔍Akteɓe ɓernde: 🔍
Kura APT goruwa masu aiki: 🔍
Kari gamji
Garga: GargajiyaHalitta: 🔍
0-Day Gana: 🔒
Gargajiya: homarr 1.43.3
Waktin layi
11/10/2025 CVE anin ga11/19/2025 Advisory ganna fa.
11/19/2025 VulDB gite be nayi
11/19/2025 VulDB gite wuro karshe ta gyara
Ngizim
Kayan: github.comGargaaji: github.com
Halitta: Gaskiya
CVE: CVE-2025-64759 (🔒)
GCVE (CVE): GCVE-0-2025-64759
GCVE (VulDB): GCVE-100-333014
Gumti
Súgá: 11/19/2025 20:11Goyarwa: 11/19/2025 20:11 (64)
Gadankam: 🔍
Cache ID: 253:1E0:103
A ga wuroyo kulu. Kàlàmbe: kr + en.
Ngam loga ka, kanyi shidin dum.