Filebrowser

Filebrowser

32 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-53826

Exploit
  • EPSS 0.31%
  • Veröffentlicht 15.07.2025 18:15:24
  • Zuletzt bearbeitet 05.08.2025 18:26:27

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename, and edit files. In version 2.39.0, File Browser’s authentication system issues long-lived JWT tokens that remain valid...

6.5

CVE-2025-53893

Exploit
  • EPSS 0.26%
  • Veröffentlicht 15.07.2025 17:47:30
  • Zuletzt bearbeitet 05.08.2025 18:27:22

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename, and edit files. In version 2.38.0, a Denial of Service (DoS) vulnerability exists in the file processing logic when re...

7.5

CVE-2025-52997

Medienbericht Exploit
  • EPSS 0.06%
  • Veröffentlicht 30.06.2025 20:15:25
  • Zuletzt bearbeitet 04.08.2025 18:15:35

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. Prior to version 2.34.1, a missing password policy and brute-force protection makes the authentication ...

4.3

CVE-2025-52996

Medienbericht Exploit
  • EPSS 0.07%
  • Veröffentlicht 30.06.2025 19:58:33
  • Zuletzt bearbeitet 04.08.2025 18:15:35

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In versions 2.32.0 and prior, the implementation of password protected links is error-prone, resulting ...

6.6

CVE-2025-52995

Medienbericht Exploit
  • EPSS 0.16%
  • Veröffentlicht 30.06.2025 19:57:52
  • Zuletzt bearbeitet 10.07.2025 14:21:24

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. Prior to version 2.33.10, the implementation of the allowlist is erroneous, allowing a user to execute ...

6.5

CVE-2025-52901

Medienbericht Exploit
  • EPSS 0.11%
  • Veröffentlicht 30.06.2025 19:56:25
  • Zuletzt bearbeitet 04.08.2025 18:15:35

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. Prior to version 2.33.9, access tokens are used as GET parameters. The JSON Web Token (JWT) which is us...

8

CVE-2025-52904

Medienbericht Exploit
  • EPSS 0.41%
  • Veröffentlicht 26.06.2025 18:21:03
  • Zuletzt bearbeitet 05.08.2025 18:25:10

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In version 2.32.0 of the web application, all users have a scope assigned, and they only have access to...

8

CVE-2025-52903

Medienbericht Exploit
  • EPSS 0.47%
  • Veröffentlicht 26.06.2025 18:16:32
  • Zuletzt bearbeitet 05.08.2025 18:23:52

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In version 2.32.0, the Command Execution feature of File Browser only allows the execution of shell com...

5.4

CVE-2025-52902

Medienbericht Exploit
  • EPSS 0.05%
  • Veröffentlicht 26.06.2025 14:37:45
  • Zuletzt bearbeitet 10.07.2025 01:09:35

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. The Markdown preview function of File Browser prior to v2.33.7 is vulnerable to Stored Cross-Site-Scrip...

5.5

CVE-2025-52900

Medienbericht Exploit
  • EPSS 0.03%
  • Veröffentlicht 26.06.2025 14:35:50
  • Zuletzt bearbeitet 10.07.2025 01:17:03

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. The file access permissions for files uploaded to or created from File Browser are never explicitly set...