2026-04-07 16:22:51
GitHub_M
PUBLISHED
File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory. Prior to 2.63.1, when an admin revokes a users Share and Download permissions, existing share links created by that user remain fully accessible to unauthenticated users. The public share download handler does not re-check the share owners current permissions. This vulnerability is fixed in 2.63.1.