CVE-2025-34157 | coollabsio Coolify up to 4.0.0-beta.420.6 Project Creation Workflow cross site scripting

Inserito da Angelo Barbosa | Ago 27, 2025 | CVE

A vulnerability was found in coollabsio Coolify up to 4.0.0-beta.420.6. It has been rated as problematic. Impacted is an unknown function of the component Project Creation Workflow. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2025-34157. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.

CVE-2025-34157 | coollabsio Coolify up to 4.0.0-beta.420.6 Project Creation Workflow cross site scripting

Post correlati

CVE-2024-3504 | lunary-ai lunary up to 1.2.6 access control

CVE-2024-57986 | Linux Kernel up to 6.1.128/6.6.75/6.12.12/6.13.1 hid_apply_multipler infinite loop

CVE-2024-3946 | WP To Do Plugin up to 1.3.0 on WordPress Setting cross site scripting

CVE-2025-6926 | CentralAuth Extension up to 1.39.12/1.42.6/1.43.1 on Mediawiki improper authentication