Critical
CVSS 9.8
Overview
File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename, and edit files. In version 2.39.0, File Browserβs authentication system issues long-lived JWT tokens that remain valid even after the user logs out. As of time of publication, no known patches exist.