Login Sign Up

Filebrowser Security Vulnerabilities (CVEs)

Track 10 security vulnerabilities affecting Filebrowser products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

2 Critical
5 High
3 Medium
🔔 Get Alerts for Filebrowser
CVE-2026-25890 8.1

In File Browser versions before 2.57.1, authenticated users can bypass file access restrictions by adding extra slashes to file paths in requests. Thi...

Feb 9, 2026
CVE-2026-25889 5.4

A case-sensitivity flaw in File Browser's password validation allows authenticated users to change passwords without providing the current password. B...

Feb 9, 2026
CVE-2026-23849 5.3

This CVE describes a timing attack vulnerability in File Browser's authentication mechanism that allows unauthenticated attackers to enumerate valid u...

Jan 19, 2026
CVE-2025-64523 8.8

This CVE describes an Insecure Direct Object Reference (IDOR) vulnerability in File Browser versions before 2.45.1. Any authenticated user with share ...

Nov 12, 2025
CVE-2025-53826 9.8

File Browser version 2.39.0 has an authentication flaw where JWT tokens remain valid indefinitely even after user logout. This allows attackers with s...

Jul 15, 2025
CVE-2025-52995 8.0

CVE-2025-52995 is an improper command allowlist vulnerability in File Browser that allows authenticated users to execute unauthorized shell commands. ...

Jun 30, 2025
CVE-2025-52997 5.9

File Browser versions before 2.34.1 lack password policy enforcement and brute-force protection, allowing attackers to guess passwords through repeate...

Jun 30, 2025
CVE-2025-52903 8.0

CVE-2025-52903 is a command injection vulnerability in File Browser version 2.32.0 that allows authenticated users with 'Execute commands' permission ...

Jun 26, 2025
CVE-2025-52902 7.6

File Browser versions prior to 2.33.7 have a stored cross-site scripting (XSS) vulnerability in the Markdown preview function. When users upload Markd...

Jun 26, 2025
CVE-2023-39612 9.0

This cross-site scripting (XSS) vulnerability in FileBrowser allows authenticated attackers to escalate privileges to Administrator by tricking users ...

Sep 16, 2023

Why Monitor Filebrowser Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 10+ known vulnerabilities affecting Filebrowser products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Filebrowser packages in under 60 seconds. No agents required - completely agentless scanning that works across Filebrowser deployments.

Free vulnerability database: Access detailed information about every Filebrowser CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

  • Register free account & add your servers
  • Run one-time scan or schedule automatic monitoring (every 1-24 hours)
  • Receive instant alerts when new Filebrowser CVEs affect your systems
  • Access dashboard with severity breakdown & fix instructions
Start Monitoring Filebrowser CVEs Free