CVE-2025-48488 – FreeScout Cross-Site Scripting (XSS) Vulnerability

May 30, 2025

CVE ID : CVE-2025-48488

Published : May 30, 2025, 7:15 a.m. | 2 hours, 21 minutes ago

Description : FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, deleting the file .htaccess allows an attacker to upload an HTML file containing malicious JavaScript code to the server, which can result in a Cross-Site Scripting (XSS) vulnerability. This issue has been patched in version 1.8.180.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-48489 – FreeScout Cross-Site Scripting (XSS) Vulnerability

Next Article CVE-2025-48485 – FreeScout Cross-Site Scripting Vulnerability

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

In MCP era API discoverability is now more important than ever

Google’s DeepMind CEO lists 2 AGI existential risks to society keeping him up at night — but claims “today’s AI systems” don’t warrant a pause on development

Anthropic researchers say next-generation AI models will reduce humans to “meat robots” in a spectrum of crazy futures

Xbox just quietly added two of the best RPGs of all time to Game Pass

7 reasons The Division 2 is a game you should be playing in 2025

Mastering TypeScript: How Complex Should Your Types Be?

Mastering TypeScript: How Complex Should Your Types Be?

IDMC – CDI Best Practices

PWC-IDMC Migration Gaps

Google’s DeepMind CEO lists 2 AGI existential risks to society keeping him up at night — but claims “today’s AI systems” don’t warrant a pause on development

Google’s DeepMind CEO lists 2 AGI existential risks to society keeping him up at night — but claims “today’s AI systems” don’t warrant a pause on development

Anthropic researchers say next-generation AI models will reduce humans to “meat robots” in a spectrum of crazy futures

Xbox just quietly added two of the best RPGs of all time to Game Pass

CVE-2025-48488 – FreeScout Cross-Site Scripting (XSS) Vulnerability

High-Severity Flaw in MIM Medical Imaging Software Allows Code Execution!

Amazon Alerts: High-Severity FreeRTOS-Plus-TCP Flaw Needs Immediate Patch!

Salesforce Connect: Bridging External Data with Salesforce

My favorite new (and free) game just got a big update, and now it’s better than ever

CVE-2025-48708 – Artifex Ghostscript Argument Injection Vulnerability

One of the most anticipated Xbox games from Capcom finally has a playable demo and you can download it right now

CVE-2024-48702 – PHPGurukul Old Age Home Management System HTML Injection

Rilasciato il Browser Vivaldi 7.2: Miglioramenti alle Prestazioni e Nuovi Strumenti di Personalizzazione

CISA Alerts Fed Agencies of Active Exploitation of Palo Alto Networksâ€™ CVE-2024-5910

Call of Duty launches an end-of-day update to address Season 2 launch issues, but many persist

CVE-2025-48488 – FreeScout Cross-Site Scripting (XSS) Vulnerability

Related Posts