CVE-2025-55291 – Shaarli Reflected Cross-Site Scripting (XSS)

CVE ID : CVE-2025-55291

Published : Aug. 18, 2025, 5:15 p.m. | 56 minutes ago

Description : Shaarli is a minimalist bookmark manager and link sharing service. Prior to 0.15.0, the input string in the cloud tag page is not properly sanitized. This allows the tag to be prematurely closed, leading to a reflected Cross-Site Scripting (XSS) vulnerability. This vulnerability is fixed in 0.15.0.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…