Home

Description

A vulnerability in the file upload at bookmark + asset rendering pipeline allows an attacker to upload a malicious SVG file with JavaScript content. When an authenticated admin user views the SVG file with embedded JavaScript code of shared bookmark, JavaScript executes in the admin’s browser, retrieves the CSRF token, and sends a request to change the admin's password resulting in a full account takeover.

PUBLISHED Reserved 2025-12-07 | Published 2025-12-17 | Updated 2025-12-18 | Assigner Gridware




HIGH: 8.2CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:A/VC:H/VI:L/VA:N/SC:H/SI:N/SA:N

Problem types

CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')

Product status

Default status
unaffected

1.44.1
affected

Credits

Deema Alfehaid finder

References

www.cve.org/cverecord?id=CVE-2025-14202

cve.org (CVE-2025-14202)

nvd.nist.gov (CVE-2025-14202)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.