CVE-2025-12120 | Lite XL up to 2.1.8 Project File privilege escalation

Inserito da Angelo Barbosa | Nov 11, 2025 | CVE

A vulnerability described as problematic has been identified in Lite XL up to 2.1.8. This issue affects some unknown processing of the component Project File Handler. Executing manipulation can lead to privilege escalation.

This vulnerability is registered as CVE-2025-12120. It is possible to launch the attack remotely. No exploit is available.

A patch should be applied to remediate this issue.

CVE-2025-12120 | Lite XL up to 2.1.8 Project File privilege escalation

Post correlati

CVE-2023-49539 | Book Store Management System 1.0 category cross site scripting

CVE-2024-13466 | atakanau Automatically Hierarchic Categories in Menu Plugin Shortcode autocategorymenu cross site scripting

CVE-2025-1813 | zj1983 zz up to 2024-08 cross-site request forgery

CVE-2025-7718 | Resideo Plugin for Resideo Plugin up to 2.5.4 on WordPress resource injection