CVE-2026-44260

Name of the Vulnerable Software and Affected Versions efw4.X versions prior to 4.08.010

Description The readonly flag in the 'efw:elFinder' JSP tag is intended to prevent file modifications. When protected=true, the elfinder checkRisk() function ensures the client sends readonly=true to match the session value. However, no event handler verifies the readonly value before executing write operations. Consequently, the flag only affects client-side UI elements and response metadata. An attacker can bypass the UI and send requests directly to perform file operations regardless of the readonly setting.

Recommendations Update to version 4.08.010.