What is GHSA-3jmg-p96m-m328?

GHSA-3jmg-p96m-m328 is a security advisory published by GitHub Security Advisories with High severity. FileBrowser Quantum: unauthenticated user share share info

Which CVE IDs does GHSA-3jmg-p96m-m328 cover?

GHSA-3jmg-p96m-m328 covers the following CVE IDs: CVE-2026-46410. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

Which products are affected by GHSA-3jmg-p96m-m328?

GHSA-3jmg-p96m-m328 affects 2 products, including: go/github.com/gtsteffaniak/filebrowser/backend:\u003c 0.0.0-20260514154726-1802e1281135; go/github.com/gtsteffaniak/filebrowser:\u003c 1.2.1-stable.0.20260514154726-1802e1281135.

GHSA-3jmg-p96m-m328High

FileBrowser Quantum: unauthenticated user share share info

Vendor

GitHub Security Advisories

Published

May 19, 2026

Last Modified

May 19, 2026

🔗 CVE IDs covered (1)

CVE-2026-46410 →

📋 Description

### Impact Some sensitive info -- such as source and path can get exposed. ### Patches Update to the latest version ### Workarounds no

🎯 Affected products2

go/github.com/gtsteffaniak/filebrowser/backend:< 0.0.0-20260514154726-1802e1281135
go/github.com/gtsteffaniak/filebrowser:< 1.2.1-stable.0.20260514154726-1802e1281135

🔗 References (3)

https://github.com/gtsteffaniak/filebrowser/security/advisories/GHSA-3jmg-p96m-m328
https://github.com/gtsteffaniak/filebrowser/commit/1802e1281135cba83eb4acd86b58293fe121e2a5
https://github.com/advisories/GHSA-3jmg-p96m-m328