CVE-2025-15585

Name of the Vulnerable Software and Affected Versions Fileflows versions prior to 25.05.2

Description Fileflows is affected by an authenticated SQL injection issue in the library-file search function. Exploitation of this issue requires the system to utilize MySQL as the underlying database. Successful exploitation could lead to privilege escalation or data exfiltration.

Recommendations Update Fileflows to version 25.05.2 or later.