CVE-2025-15585

MEDIUM

fileflows < 25.05.2 - Authenticated SQL Injection via Library-File Search Function

Title source: llm

Description

Fileflows versions before 25.05.2 are affected by an authenticated SQL injection vulnerability in the library-file search function. Successful exploitation requires the system to use MySQL as the underlying database and could result in privilege escalation or data exfiltration.

References (2)

Core 2

Core References

Various Sources

https://fileflows.com/docs/versions#version-2505

Various Sources

https://projectblack.io/blog/fileflows-sql-injection-by-decompiling-net-code/#exploitation

Scores

CVSS v4 6.7

EPSS 0.0019

EPSS Percentile 8.7%

CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-89

Status published

Products (1)

fileflows/fileflows < 25.05.2

Published Feb 19, 2026

Tracked Since Feb 19, 2026