CVE-2025-52996 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In versions 2…
Low CVSS: 3.1

CVE-2025-52996

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In versions 2.32.0 and prior, the implementation of password protected links is error-prone, resulting in potential unprotected sharing of a file through a direct download link. This link can either be shared unknowingly by a user or discovered from various locations such as the browser history or the log of a proxy server used. At time of publication, no known patched versions are available.
Vendor
Filebrowser
Product
Filebrowser
CWE
CWE-305
Yayın Tarihi
2025-06-30 20:15:25
Güncelleme
2025-08-04 18:15:35
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-305 Filebrowser LOW Filebrowser 2025

Referanslar

https://github.com/filebrowser/filebrowser/issues/5239 https://github.com/filebrowser/filebrowser/security/advisories/GHSA-3v48-283x-f2w4 https://github.com/sbaresearch/advisories/tree/public/2025/SBA-ADV-20250327-02_Filebrowser_Password_Protection_Of_Links_Bypassable