CVE-2025-51857 | THREATINT

Description

The reconcile method in the AttachmentReconciler class of the Halo system v.2.20.18LTS and before is vulnerable to XSS attacks.

PUBLISHED Reserved 2025-06-16 | Published 2025-08-05 | Updated 2025-08-05 | Assigner mitre

References

github.com/halo-dev/halo

gist.github.com/this1slwl/d714514635119159607c14faebbbcf20

cve.org (CVE-2025-51857)

nvd.nist.gov (CVE-2025-51857)

Download JSON

help @ threatint.eu