FileBrowser ≤ v2.57.0 - Path-Based Access Control Bypass via Multiple Leading Slashes in URL (Authenticated Authorization Byp

Full Article URL: https://cxsecurity.com/issue/WLB-2026020025
Textarea URL (this page): <a href="https://textarea.nl/i/eNrLKCkpKLbS10-uKE5NLi3KLKnUS87P1c8sLi5N1Q_3cdI1MjAyMzAyMDAyBQBa2A4Y_2026-02-23">https://textarea.nl/i/eNrLKCkpKLbS10-uKE5NLi3KLKnUS87P1c8sLi5N1Q_3cdI1MjAyMzAyMDAyBQBa2A4Y_2026-02-23
Source: https://cxsecurity.com/wlb/rss/all/
CXSecurity.com: https://cxsecurity.com/
Publication date: 2026-02-23 22:19:16
Last retrieval: 2026-02-23 22:45:14.076620

Topic: FileBrowser ≤ v2.57.0 - Path-Based Access Control Bypass via Multiple Leading Slashes in URL (Authenticated Authorization Byp Risk: Medium Text:#!/usr/bin/env python3 # Exploit Title: FileBrowser Access Control Bypass via Multiple Leading Slashes # CVE: CVE-2026-25890 ...