3 matches found
CVE-2026-30230
creationtimestamp| type| source ---|---|--- 2026-03-06 23:06:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mggghtyn3i27...
CVE-2026-30230
A flaw was found in Flare, a file sharing platform. A remote attacker could exploit this vulnerability due to improper access control in the thumbnail endpoint. This flaw allows an attacker to access thumbnails of password-protected files without providing the correct password, leading to...
CVE-2026-30230
Flare is a Next.js-based, self-hostable file sharing platform that integrates with screenshot tools. Prior to version 1.7.2, the thumbnail endpoint does not validate the password for password‑protected files. It checks ownership/admin for private files but skips password verification, allowing...