Количество 3
Количество 3
CVE-2025-52996
File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In versions 2.32.0 and prior, the implementation of password protected links is error-prone, resulting in potential unprotected sharing of a file through a direct download link. This link can either be shared unknowingly by a user or discovered from various locations such as the browser history or the log of a proxy server used. At time of publication, no known patched versions are available.
GHSA-3v48-283x-f2w4
File Browser's password protection of links is bypassable
BDU:2026-00103
Уязвимость веб-менеджера для управления файлами и каталогами File Browser, связанная с обходом аутентификации в силу исходной ошибки, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-52996 File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In versions 2.32.0 and prior, the implementation of password protected links is error-prone, resulting in potential unprotected sharing of a file through a direct download link. This link can either be shared unknowingly by a user or discovered from various locations such as the browser history or the log of a proxy server used. At time of publication, no known patched versions are available. | CVSS3: 3.1 | 0% Низкий | 7 месяцев назад |
| GHSA-3v48-283x-f2w4 File Browser's password protection of links is bypassable | CVSS3: 3.1 | 0% Низкий | 7 месяцев назад |
 | BDU:2026-00103 Уязвимость веб-менеджера для управления файлами и каталогами File Browser, связанная с обходом аутентификации в силу исходной ошибки, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 4.3 | 0% Низкий | 7 месяцев назад |
Уязвимостей на страницу