GHSA-7cj6-cw3p-4jpwLowCVSS 3.1
filebrowser versions before 2.63.17 fail to normalize paths before querying the share index in...
🔗 CVE IDs covered (1)
📋 Description
filebrowser versions before 2.63.17 fail to normalize paths before querying the share index in DeleteWithPathPrefix, allowing authenticated users to leave stale public shares behind. Attackers can delete a shared directory using a trailing-slash path, then recreate the same directory to expose new contents through the dormant public share URL.
🔗 References (5)
- https://github.com/filebrowser/filebrowser/security/advisories/GHSA-pp88-jhwj-5qh5
- https://nvd.nist.gov/vuln/detail/CVE-2026-61874
- https://github.com/filebrowser/filebrowser/commit/be23ab3a15bf957928ecfed88de5ab67850c1b9c
- https://www.vulncheck.com/advisories/filebrowser-before-stale-public-share-via-trailing-slash-delete
- https://github.com/advisories/GHSA-7cj6-cw3p-4jpw