CVE-2025-56515

Published: Oct 1, 2025Modified: Oct 15, 2025

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

File upload vulnerability in Fiora chat application 1.0.0 through user avatar upload functionality. The application fails to validate SVG file content, allowing malicious SVG files with embedded foreignObject elements containing iframe tags and JavaScript event handlers (onmouseover) to be uploaded and stored. When rendered, these SVG files execute arbitrary JavaScript, enabling attackers to steal user sessions, cookies, and perform unauthorized actions in the context of users viewing affected profiles.

Affected (1)

Products: Suisuijiang: Fiora

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Suisuijiang Fiora	Version 1.0.0

Related CWEs

Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

References (3)

https://fiora.suisuijiang.com/

Source: cve@mitre.org

Product

https://github.com/Kov404/CVE-2025-56515/tree/main

Source: cve@mitre.org

ExploitThird Party Advisory

https://github.com/yinxin630/fiora

Source: cve@mitre.org

Product

Timeline

No history available yet.