Vulnerability Description
FreshRSS is a free, self-hostable RSS aggregator. Versions 1.26.3 and below contain a vulnerability where a specially crafted page can trick a user into executing arbitrary JS code or promoting a user in FreshRSS by obscuring UI elements in iframes. If embedding an authenticated iframe is possible, this may lead to privilege escalation via obscuring the promote user button in the admin UI or XSS by tricking the user to drag content into the UserJS text area. This is fixed in version 1.27.0
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Freshrss | Freshrss | < 1.27.0 |
Related Weaknesses (CWE)
References
- https://github.com/FreshRSS/FreshRSS/pull/7677Patch
- https://github.com/FreshRSS/FreshRSS/releases/tag/1.27.0Release Notes
- https://github.com/FreshRSS/FreshRSS/security/advisories/GHSA-wm5p-7pr7-c8rwExploitVendor Advisory
- https://github.com/FreshRSS/FreshRSS/security/advisories/GHSA-wm5p-7pr7-c8rwExploitVendor Advisory
FAQ
What is CVE-2025-57769?
CVE-2025-57769 is a vulnerability with a CVSS score of 6.1 (MEDIUM). FreshRSS is a free, self-hostable RSS aggregator. Versions 1.26.3 and below contain a vulnerability where a specially crafted page can trick a user into executing arbitrary JS code or promoting a user...
How severe is CVE-2025-57769?
CVE-2025-57769 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-57769?
Check the references section above for vendor advisories and patch information. Affected products include: Freshrss Freshrss.