Path Traversal in Filebrowser
CVE-2026-54093
File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.6, filebrowser builds the download-as-zip / download-as-tar archive entry names with fil…
Vulnerability class: Path Traversal (Directory Traversal)
Affected products
- Filebrowser — versions < 2.63.6
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)