Lucene search
K

30 matches found

CBLMariner
CBLMariner
added 2026/05/30 12:34 a.m.8 views

CVE-2026-46597 affecting package gh for versions less than 2.62.0-16

CVE-2026-46597 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...

7.5CVSS5.8AI score0.00359EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/30 12:34 a.m.8 views

CVE-2026-39829 affecting package gh for versions less than 2.62.0-16

CVE-2026-39829 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...

7.5CVSS5.8AI score0.00415EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/30 12:34 a.m.10 views

CVE-2026-39830 affecting package gh for versions less than 2.62.0-16

CVE-2026-39830 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...

9.1CVSS5.8AI score0.00533EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/30 12:34 a.m.11 views

CVE-2026-39834 affecting package gh for versions less than 2.62.0-16

CVE-2026-39834 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...

9.1CVSS5.8AI score0.00466EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/30 12:34 a.m.7 views

CVE-2026-39821 affecting package gh for versions less than 2.62.0-16

CVE-2026-39821 affecting package gh for versions less than 2.62.0-16. A patched version of the package is available...

9.6CVSS5.8AI score0.00478EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/05/09 3:31 a.m.8 views

CVE-2026-32288 affecting package gh for versions less than 2.62.0-15

CVE-2026-32288 affecting package gh for versions less than 2.62.0-15. A patched version of the package is available...

5.5CVSS5.8AI score0.0029EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/03/28 12:26 a.m.6 views

SUSE CVE-2026-32760

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. In versions 2.61.2 and below, any unauthenticated visitor can register a full administrator account when self-registration signup = true is enabled and the...

10CVSS5.8AI score0.00677EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/03/26 3:11 p.m.4 views

CVE-2026-32758

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Versions 2.61.2 and below are vulnerable to Path Traversal through the resourcePatchHandler http/resource.go. The destination path in resourcePatchHandler is...

6.5CVSS5.7AI score0.00387EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:11 p.m.5 views

CVE-2026-32761

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Versions 2.61.0 and below contain a permission enforcement bypass which allows users who are denied download privileges perm.download = false but granted share...

6.5CVSS5.7AI score0.00424EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:2 p.m.6 views

CVE-2026-32760

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. In versions 2.61.2 and below, any unauthenticated visitor can register a full administrator account when self-registration signup = true is enabled and the...

10CVSS5.8AI score0.00677EPSS
Exploits1References1
Snyk
Snyk
added 2026/03/20 2:42 a.m.1 views

Authorization Bypass Through User-Controlled Key

Overview github.com/filebrowser/filebrowser/v2/http is a web file browser. Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via the public share links when they retain share privileges share=true. An attacker can access and exfiltrate file...

7.1CVSS5.8AI score0.00424EPSS
Exploits1References2
Snyk
Snyk
added 2026/03/20 2:42 a.m.3 views

Authorization Bypass Through User-Controlled Key

Overview Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via the public share links when they retain share privileges share=true. An attacker can access and exfiltrate file contents by creating a public share link for files they are not permitt...

7.1CVSS5.8AI score0.00424EPSS
Exploits1References2
NVD
NVD
added 2026/03/20 12:16 a.m.7 views

CVE-2026-32760

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. In versions 2.61.2 and below, any unauthenticated visitor can register a full administrator account when self-registration signup = true is enabled and the...

10CVSS0.00677EPSS
Exploits1References3
NVD
NVD
added 2026/03/20 12:16 a.m.6 views

CVE-2026-32761

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Versions 2.61.0 and below contain a permission enforcement bypass which allows users who are denied download privileges perm.download = false but granted share...

6.5CVSS0.00424EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/19 11:45 p.m.2 views

CVE-2026-32761 File Browser has an Authorization Policy Bypass in its Public Share Download Flow

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Versions 2.61.0 and below contain a permission enforcement bypass which allows users who are denied download privileges perm.download = false but granted share...

6.5CVSS5.7AI score0.00424EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/19 11:45 p.m.24 views

CVE-2026-32761 File Browser has an Authorization Policy Bypass in its Public Share Download Flow

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Versions 2.61.0 and below contain a permission enforcement bypass which allows users who are denied download privileges perm.download = false but granted share...

6.5CVSS0.00424EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/03/19 11:39 p.m.5 views

CVE-2026-32760

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. In versions 2.61.2 and below, any unauthenticated visitor can register a full administrator account when self-registration signup = true is enabled and the...

10CVSS5.8AI score0.00677EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/03/19 11:39 p.m.7 views

CVE-2026-32760 File Browser Self Registration Grants Any User Admin Access When Default Permissions Include Admin

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. In versions 2.61.2 and below, any unauthenticated visitor can register a full administrator account when self-registration signup = true is enabled and the...

10CVSS6.2AI score0.00677EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/03/19 11:22 p.m.6 views

CVE-2026-32758

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Versions 2.61.2 and below are vulnerable to Path Traversal through the resourcePatchHandler http/resource.go. The destination path in resourcePatchHandler is...

6.5CVSS5.7AI score0.00387EPSS
Exploits0References4Affected Software1
CBLMariner
CBLMariner
added 2026/03/10 10:56 p.m.7 views

CVE-2025-58190 affecting package gh for versions less than 2.62.0-13

CVE-2025-58190 affecting package gh for versions less than 2.62.0-13. A patched version of the package is available...

5.3CVSS5.8AI score0.00482EPSS
Exploits1
Rows per page
Query Builder