CVE-2025-61586

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2025-61586

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-61586.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2025-61586

Aliases

GHSA-w35p-p867-qr4f

Published

2025-09-29T23:14:51.054Z

Modified

2026-04-10T05:32:38.073299Z

Severity

6.9 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N CVSS Calculator

Summary

FreshRSS is vulnerable to directory enumeration by setting path in its theme field

Details

FreshRSS is a free, self-hostable RSS aggregator. Versions 1.26.3 and below are vulnerable to directory enumeration by setting path in theme field, allowing attackers to gain additional information about the server by checking if certain directories exist. This issue is fixed in version 1.27.0.

Database specific

{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/61xxx/CVE-2025-61586.json",
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-22"
    ]
}

References

Affected packages

Git / github.com/freshrss/freshrss

Affected ranges

Type: GIT
Repo: https://github.com/freshrss/freshrss
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

66e2f00223b915c337291c0f34876d6390fb1c80

Affected versions

0.*

0.1.0

0.5.0

0.6.0

0.6.1

0.7.0

0.7.1

0.8.0

0.8.1

1.*

1.0.0

1.10.0

1.10.1

1.10.2

1.11.0

1.11.1

1.11.2

1.12.0

1.13.0

1.13.1

1.14.0

1.14.1

1.14.2

1.14.3

1.15.0

1.15.1

1.15.2

1.16.0

1.16.1

1.16.2

1.17.0

1.18.0

1.18.1

1.19.0

1.19.1

1.19.2

1.2.0

1.20.0

1.20.1

1.21.0

1.22.0

1.22.1

1.23.0

1.23.1

1.24.0

1.24.1

1.24.2

1.24.3

1.25.0

1.26.0

1.26.1

1.26.2

1.26.3

1.4.0

1.5.0

1.6.0

1.6.1

1.6.2

1.6.3

1.7.0

1.8.0

1.9.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-61586.json"