github.com/gtsteffaniak/filebrowser

Go2 known CVEs affecting this package

Aggregated from OSV, GitHub Security Advisories, NVD, and vendor advisories. Each CVE links to its full detail page with vendor advisories, patches, fixed versions, and remediation guidance.

CVEs affecting github.com/gtsteffaniak/filebrowserpage 1 of 1

CVE-2026-44542CRITICALCVSS 9.1EG 9.1✓ Fixed in 0.0.0-20260501183844-112740bdd41d
2026-05-14
FileBrowser Quantum is a free, self-hosted, web-based file manager. Prior to 1.3.1-stable and 1.3.9-beta, attacker-controlled path input is joined with a trusted base path prior to sanitization, allowing traversal sequences (e.g., ../) to …
CVE-2026-46410HIGHCVSS 0.0EG 0.0✓ Fixed in 1.2.1-stable.0.20260514154726-1802e1281135
2026-05-19
FileBrowser Quantum: unauthenticated user share share info ### Impact Some sensitive info -- such as source and path can get exposed. ### Patches Update to the latest version ### Workarounds no

Check whether github.com/gtsteffaniak/filebrowser is used in your infrastructure

EchelonGraph scans your cloud and SBOMs to map every package to your actual deployments. See blast radius for github.com/gtsteffaniak/filebrowser CVEs against the assets you own.

Start Free Scan →