25Şub
CVE-2025-27145 | 9001 copyparty up to 1.16.14 Web UI cross site scripting (GHSA-m2jw-cj8v-937r)
A vulnerability classified as problematic was found in 9001 copyparty up to 1.16.14. This vulnerability affects unknown code of the component Web UI. The manipulation leads to improper neutralization of script in attributes in a web page. This vulnerability was named CVE-2025-27145. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.