Vulnerability Description
FileRise is a self-hosted web-based file manager with multi-file upload, editing, and batch operations. In versiosn 2.3.7 through 3.10.0, the file snippet endpoint `/api/file/snippet.php` allows an authenticated user with only `read_own` access to a folder to retrieve snippet content from files uploaded by other users in the same folder. This is a server-side authorization flaw in the `read_own` enforcement for hover previews. Version 3.11.0 fixes the issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Filerise | Filerise | >= 2.3.7, < 3.11.0 |
Related Weaknesses (CWE)
References
- https://github.com/error311/FileRise/releases/tag/v3.11.0Release Notes
- https://github.com/error311/FileRise/security/advisories/GHSA-62wx-vp78-2p83ExploitMitigationVendor Advisory
- https://github.com/error311/FileRise/security/advisories/GHSA-62wx-vp78-2p83ExploitMitigationVendor Advisory
FAQ
What is CVE-2026-33477?
CVE-2026-33477 is a vulnerability with a CVSS score of 4.3 (MEDIUM). FileRise is a self-hosted web-based file manager with multi-file upload, editing, and batch operations. In versiosn 2.3.7 through 3.10.0, the file snippet endpoint `/api/file/snippet.php` allows an au...
How severe is CVE-2026-33477?
CVE-2026-33477 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-33477?
Check the references section above for vendor advisories and patch information. Affected products include: Filerise Filerise.