CVE-2025-13058
soerennb eXtplorer Filename cross site scripting
CVSS Score
3.5
EPSS Score
0.0%
EPSS Percentile
0th
A security flaw has been discovered in soerennb eXtplorer up to 2.1.15. The affected element is an unknown function of the component Filename Handler. The manipulation results in cross site scripting. The attack may be launched remotely. The patch is identified as 002def70b985f7012586df2c44368845bf405ab3. Applying a patch is advised to resolve this issue.
| CWE | CWE-79 CWE-94 |
| Vendor | soerennb |
| Product | extplorer |
| Published | Nov 12, 2025 |
| Last Updated | Feb 24, 2026 |
Stay Ahead of the Next One
Get instant alerts for soerennb extplorer
Be the first to know when new low vulnerabilities affecting soerennb extplorer are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N/E:X/RL:O/RC:C Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Affected Versions
soerennb / eXtplorer
2.1.0 2.1.1 2.1.2 2.1.3 2.1.4 2.1.5 2.1.6 2.1.7 2.1.8 2.1.9 2.1.10 2.1.11 2.1.12 2.1.13 2.1.14 2.1.15
References
vuldb.com: https://vuldb.com/?id.332185 vuldb.com: https://vuldb.com/?ctiid.332185 vuldb.com: https://vuldb.com/?submit.682370 github.com: https://github.com/soerennb/extplorer/issues/33 github.com: https://github.com/soerennb/extplorer/commit/002def70b985f7012586df2c44368845bf405ab3 github.com: https://github.com/soerennb/extplorer/
Credits
๐ NomanProdhan (VulDB User)