Lucene search
K

5 matches found

NVD
NVD
added 2025/10/20 6:15 p.m.8 views

CVE-2025-62509

FileRise is a self-hosted web-based file manager with multi-file upload, editing, and batch operations. Prior to version 1.4.0, a business logic flaw in FileRise’s file/folder handling allows low-privilege users to perform unauthorized operations view/delete/modify on files created by other users...

8.1CVSS0.00279EPSS
Exploits0References3
CVE
CVE
added 2025/10/20 5:39 p.m.13 views

CVE-2025-62510

Summary: CVE-2025-62510 affects FileRise, a self-hosted web-based file manager. A regression in version 1.4.0 allowed folder visibility/ownership to be inferred from folder names, enabling low-privilege users to see or interact with folders that match their username and, in some cases, other user...

8.1CVSS6.4AI score0.00279EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/20 5:38 p.m.3 views

CVE-2025-62509 FileRise improper ownership/permission validation allowed cross-tenant file operations

FileRise is a self-hosted web-based file manager with multi-file upload, editing, and batch operations. Prior to version 1.4.0, a business logic flaw in FileRise’s file/folder handling allows low-privilege users to perform unauthorized operations view/delete/modify on files created by other users...

8.1CVSS6.2AI score0.00279EPSS
Exploits0References3
OSV
OSV
added 2025/10/20 5:38 p.m.7 views

CVE-2025-62509 FileRise improper ownership/permission validation allowed cross-tenant file operations

FileRise is a self-hosted web-based file manager with multi-file upload, editing, and batch operations. Prior to version 1.4.0, a business logic flaw in FileRise’s file/folder handling allows low-privilege users to perform unauthorized operations view/delete/modify on files created by other users...

8.1CVSS6.6AI score0.00279EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/10/20 12:0 a.m.9 views

FileRise 访问控制错误漏洞

FileRise is a lightweight, self-hosted web-based file manager by Ryan Personal Developer. An access control error vulnerability exists in FileRise version 1.4.0, which stems from the fact that folder visibility and ownership can be inferred from the folder name, which could lead to a low-privileg...

8.1CVSS6.7AI score0.00279EPSS
Exploits0References4
Rows per page
Query Builder