๐Ÿ” CVE Alert

CVE-2025-46320

MEDIUM 6.1
CVSS Score
6.1
EPSS Score
0.0%
EPSS Percentile
0th

A cross-site scripting (XSS) vulnerability in a FileMaker WebDirect custom homepage could lead to unauthorized access and remote code execution. This vulnerability has been fully addressed in FileMaker Server 22.0.4 and FileMaker Server 21.1.7.

Vendor claris
Product filemaker server
Published Feb 24, 2026
Last Updated Feb 24, 2026
Stay Ahead of the Next One

Get instant alerts for claris filemaker server

Be the first to know when new medium vulnerabilities affecting claris filemaker server are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Claris / FileMaker Server
unspecified < 22.0.4
Claris / FileMaker Server
unspecified < 21.1.7

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
support.claris.com: https://support.claris.com/s/answerview?anum=000049123&language=en_US