CVE-2025-54597 in LinuxServer.io Heimdallinfo

Summary

LinuxServer.io Heimdall before 2.7.3 allows XSS via the q parameter.

Responsible

MITRE

Reservation

07/27/2025

Disclosure

07/27/2025

Entries

VulDB provides additional information and datapoints for this CVE:

IDVulnerabilityCWEExpCouCVE
317856LinuxServer.io Heimdall cross site scripting79Not definedOfficial fixCVE-2025-54597

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!