Количество 2
Количество 2
CVE-2025-53826
File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename, and edit files. In version 2.39.0, File Browser’s authentication system issues long-lived JWT tokens that remain valid even after the user logs out. As of time of publication, no known patches exist.
GHSA-7xwp-2cpp-p8r7
File Browser’s insecure JWT handling can lead to session replay attacks after logout
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-53826 File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename, and edit files. In version 2.39.0, File Browser’s authentication system issues long-lived JWT tokens that remain valid even after the user logs out. As of time of publication, no known patches exist. | CVSS3: 9.8 | 0% Низкий | 7 месяцев назад |
| GHSA-7xwp-2cpp-p8r7 File Browser’s insecure JWT handling can lead to session replay attacks after logout | 0% Низкий | 7 месяцев назад |
Уязвимостей на страницу