CVE-2025-31134 MEDIUM

CVE-2025-31134: FreshRSS vulnerable to directory enumeration via ext.php

Vendor Freshrss
Product FreshRSS
Weakness CWE-201
Published June 4, 2025
Last update June 4, 2025

CVSS base score

5.5/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

FreshRSS is a self-hosted RSS feed aggregator. Prior to version 1.26.2, an attacker can gain additional information about the server by checking if certain directories exist. An attacker can, for example, check if older PHP versions are installed or if certain software is installed on the server and potentially use that information to further attack the server. Version 1.26.2 contains a patch for the issue.

Key dates

02Disclosure timeline

June 4, 2025 CVE published
June 4, 2025 Record updated