Detections
Analytics

CVE-2025-13058

medium

Description

A security flaw has been discovered in soerennb eXtplorer up to 2.1.15. The affected element is an unknown function of the component Filename Handler. The manipulation results in cross site scripting. The attack may be launched remotely. The patch is identified as 002def70b985f7012586df2c44368845bf405ab3. Applying a patch is advised to resolve this issue.

References

https://vuldb.com/?submit.682370

https://vuldb.com/?id.332185

https://vuldb.com/?ctiid.332185

https://github.com/soerennb/extplorer/issues/33

https://github.com/soerennb/extplorer/commit/002def70b985f7012586df2c44368845bf405ab3

Details

Source: Mitre, NVD

Published: 2025-11-12

Updated: 2025-11-14

Risk Information

CVSS v2

Base Score: 4

Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 3.5

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Severity: Low

CVSS v4

Base Score: 5.1

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

Severity: Medium

EPSS

EPSS: 0.00031