Cross Site Scripting Vulnerability in soerennb eXtplorer PHP File Manager
CVE-2025-13058

5.1MEDIUM

Key Information:

Vendor: Soerennb
Status: Extplorer
Vendor: CVE Published:; 12 November 2025

What is CVE-2025-13058?

A security flaw has been detected in eXtplorer, specifically in the Filename Handler component, which allows for cross site scripting vulnerabilities. This flaw can be exploited remotely, posing potential risks to user data and application integrity. It is essential to apply the provided patch (002def70b985f7012586df2c44368845bf405ab3) to mitigate this issue and enhance the security of the application.

Affected Version(s)

eXtplorer 2.1.0

eXtplorer 2.1.1

eXtplorer 2.1.2

References

https://vuldb.com/?id.332185

vdb-entry

https://vuldb.com/?ctiid.332185

signaturepermissions-required

https://vuldb.com/?submit.682370

third-party-advisory

CVSS V4

Score:

5.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 12, 2025
Vulnerability Reserved
Nov 12, 2025

Credit

NomanProdhan (VulDB User)

JSON

Soerennb

What is CVE-2025-13058?

Affected Version(s)

References

CVSS V4

Timeline

Credit