Known Vulnerabilities for products from Leefish
Listed below are 4 of the newest known vulnerabilities associated with the vendor "Leefish".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-30580 json | File Thingie 2.5.7 is vulnerable to Directory Traversal. A malicious user can leverage the "create folder from url" functiona... | Not Provided | 2026-03-20 | 2026-04-01 |
| CVE-2026-30579 json | File Thingie 2.5.7 is vulnerable to Cross Site Scripting (XSS). A malicious user can leverage the "upload file" functionality... | Not Provided | 2026-03-20 | 2026-04-01 |
| CVE-2026-30578 json | File Thinghie 2.5.7 is vulnerable to Cross Site Scripting (XSS). A malicious user can leverage the "dir" parameter of the GET... | Not Provided | 2026-03-20 | 2026-04-01 |
| CVE-2019-25471 json | FileThingie 2.5.7 contains an arbitrary file upload vulnerability that allows attackers to upload malicious files by sending ... | Not Provided | 2026-03-11 | 2026-04-13 |