2 matches found
CVE-2026-62683
File Browser (server-side) contains a vulnerability prior to version 2.63.17 where deleting a shared directory with a trailing slash can leave a stale public share behind. The issue arises because the cleanup path calls DeleteWithPathPrefix(file.Path, userID) while the Bolt backend queries the da...
CVE-2026-62683 File Browser: Trailing-slash delete leaves a stale public share behind
File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.17, File Browser can leave a public directory share behind when the shared directory is deleted through a path with a trailing slash because the...