File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename, and edit files. In version 2.39.0, File Browser’s authentication system issues long-lived JWT tokens that remain valid even after the user logs out. As of time of publication, no known patches exist.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/53xxx/CVE-2025-53826.json",
"cna_assigner": "GitHub_M",
"cwe_ids": [
"CWE-305",
"CWE-385",
"CWE-613"
]
}{
"source": [
"AFFECTED_FIELD",
"CPE_STRING"
],
"cpe": "cpe:2.3:a:filebrowser:filebrowser:2.39.0:*:*:*:*:*:*:*",
"extracted_events": [
{
"introduced": "= 2.39.0"
},
{
"last_affected": "= 2.39.0"
},
{
"introduced": "2.39.0"
},
{
"last_affected": "2.39.0"
}
]
}