CNNVD-202602-1303 Information
CNNVD ID
CNNVD-202602-1303
Related CVE
- CNNVD Published: 2026-02-09
Description (Chinese)
FileRise是Ryan个人开发者的一个轻量级、自托管的基于web的文件管理器。 FileRise 3.3.0之前版本存在安全漏洞,该漏洞源于HTML注入,可能导致修改DOM或重定向用户。
Description (English)
FileRise is a lightweight, self-hosted web-based file manager for Ryan ’ s personal developers. There is a security loophole in the pre-FileRise 3.3.0, which originates from HTML injections and may lead to modifications to DOM or re-direction of users.
Vulnerability Type
其他
Affected Vendor
个人开发者
Published
2026-02-09
Last Modified
2026-02-24
References
https://github.com/error311/FileRise/releases/tag/v3.3.0 https://github.com/error311/FileRise/blob/7fee135a5b8feb25558aba0474bd6bb53943fc88/src/models/FileModel.php#L3146 https://github.com/error311/FileRise/blob/7fee135a5b8feb25558aba0474bd6bb53943fc88/src/controllers/FileController.php#L4016-L4058 https://github.com/error311/FileRise/security/advisories/GHSA-h8fw-42v6-gfhv https://access.redhat.com/security/cve/cve-2026-25230
Patch
https://github.com/error311/FileRise/releases
Share on: