CVE-2026-30579 in File Thingieinfo

Zusammenfassung

von MITRE • 20.03.2026

File Thingie 2.5.7 is vulnerable to Cross Site Scripting (XSS). A malicious user can leverage the "upload file" functionality to upload a file with a crafted file name used to trigger a Javascript payload.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

MITRE

Reservieren

04.03.2026

Veröffentlichung

20.03.2026

Moderieren

akzeptiert

Eintrag

VDB-352145

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

6.5 (CISA-ADP)

EPSS

0.00045

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-30579
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-30579
CVE Details	https://www.cvedetails.com/cve/CVE-2026-30579/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!