CVE-2023-39612

Name of the Vulnerable Software and Affected Versions FileBrowser versions prior to 2.23.0

Description A cross-site scripting (XSS) issue allows an authenticated attacker to escalate privileges to Administrator via user interaction with a crafted HTML file or URL.

Recommendations For versions prior to 2.23.0, update to version 2.23.0 or later to resolve the issue. As a temporary workaround, consider restricting user interaction with crafted HTML files or URLs to minimize the risk of exploitation.