CVE-2025-51662

Name of the Vulnerable Software and Affected Versions FileCodeBox versions prior to 2.3

Description A stored cross-site scripting (XSS) issue exists in the text sharing feature. Insufficient input validation allows attackers to inject arbitrary JavaScript code into shared text "codeboxes". This injected code automatically executes in the browsers of users accessing the infected codebox via a link or share code.

Recommendations Update FileCodeBox to version 2.3 or later.