2 matches found
CVE-2026-34529
CVE-2026-34529 describes a Stored Cross-Site Scripting (XSS) flaw in File Browser’s EPUB preview prior to version 2.62.2. The root cause is the EPUB preview path (frontend/src/views/files/Preview.vue) passing allowScriptedContent to epub.js, whose iframe sandbox settings (allow-scripts with allow...
EUVD-2016-1374
Malware in sbrugna...