CVE-2025-13058

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-13058
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-13058.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-13058
Downstream
Published
2025-11-12T20:15:38.980Z
Modified
2026-03-15T14:12:46.477319Z
Severity
  • 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

A security flaw has been discovered in soerennb eXtplorer up to 2.1.15. The affected element is an unknown function of the component Filename Handler. The manipulation results in cross site scripting. The attack may be launched remotely. The patch is identified as 002def70b985f7012586df2c44368845bf405ab3. Applying a patch is advised to resolve this issue.

References

Affected packages

Git / github.com/soerennb/extplorer

Affected ranges

Type
GIT
Repo
https://github.com/soerennb/extplorer
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
5129710380a101d16448bf2d57d41999dfb612e6
Fixed
002def70b985f7012586df2c44368845bf405ab3
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.1.15"
        }
    ]
}

Affected versions

v2.*
v2.1.11
v2.1.13
v2.1.14
v2.1.15

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-13058.json"