๐Ÿ” CVE Alert

CVE-2025-15585

UNKNOWN 0.0
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

Fileflows versions before 25.05.2 are affected by an authenticated SQL injection vulnerability in the library-file search function. Successful exploitation requires the system to use MySQL as the underlying database and could result in privilege escalation or data exfiltration.

CWE CWE-89
Vendor fileflows
Product fileflows
Published Feb 18, 2026
Last Updated Feb 19, 2026
Stay Ahead of the Next One

Get instant alerts for fileflows fileflows

Be the first to know when new unknown vulnerabilities affecting fileflows fileflows are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

fileflows / fileflows
0 < 25.05.2

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
fileflows.com: https://fileflows.com/docs/versions#version-2505 projectblack.io: https://projectblack.io/blog/fileflows-sql-injection-by-decompiling-net-code/#exploitation