CNNVD-202602-1262 Information

CNNVD ID

CNNVD-202602-1262

Related CVE

CVE-2026-25889

• CNNVD Published: 2026-02-09

Description (Chinese)

File Browser是File Browser开源的一个文件管理界面，在指定的目录，它可以用来上传，删除，预览和编辑文件。 File Browser 2.57.1之前版本存在安全漏洞，该漏洞源于密码验证逻辑存在大小写敏感缺陷，可能导致账户接管。

Description (English)

File Browner, a file management interface open to File Browner, is a specified directory that can be used to upload, delete, preview and edit files. The previous version of File Browner 2.57.1 had a security loophole, which stemmed from a case-sensitive flaw in the password validation logic, which could lead to an account taking over.

Vulnerability Type

其他

Affected Vendor

File Browser

Published

2026-02-09

Last Modified

2026-02-24

References

https://github.com/filebrowser/filebrowser/commit/ff2f00498cff151e2fb1f5f0b16963bf33c3d6d4 https://github.com/filebrowser/filebrowser/releases/tag/v2.57.1 https://github.com/filebrowser/filebrowser/security/advisories/GHSA-hxw8-4h9j-hq2r

Patch

https://filebrowser.org/