High severityNVD Advisory· Published Aug 7, 2025· Updated Apr 15, 2026
CVE-2025-29866
CVE-2025-29866
Description
: External Control of File Name or Path vulnerability in TAGFREE X-Free Uploader XFU allows : Parameter Injection.This issue affects X-Free Uploader: from 1.0.1.0084 before 1.0.1.0085, from 2.0.1.0034 before 2.0.1.0035.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: >=1.0.1.0084, <1.0.1.0085; >=2.0.1.0034, <2.0.1.0035
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.