cvedb.io
CVE-2025-58351
MEDIUM · CVSS 6.8
EPSS exploitation probability: 0%
Published 2025-09-03T04:16:05.803 · Last modified 2026-06-17T09:44:20.660

Summary

Outline is a service that allows for collaborative documentation. In versions 0.72.0 through 0.83.0, Outline introduced a feature which facilitates local file system storage capabilities as an optional file storage strategy. This feature allowed a CSP bypass as well as a ContentType bypass that might facilitate further attacks. In the case of self-hosting and using Outline FILE_STORAGE=local on the same domain as the Outline application, a malicious payload can be uploaded as a file attachment and bypass those CSP restrictions, allowing script execution within the context of another user. This is fixed in version 0.84.0.

Affected products

getoutline — outline

Does this affect you?

Add your gear to cvedb and we'll alert you only when getoutline ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.