CVE-2023-39612

A cross-site scripting (XSS) vulnerability in FileBrowser before v2.23.0 allows an authenticated attacker to escalate privileges to Administrator via user interaction with a crafted HTML file or URL. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt