CVE-2022-25242

CVE-2022-25242

EPSS 0.4%

In FileCloud before 21.3, file upload is not protected against Cross-Site Request Forgery (CSRF).

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://herolab.usd.de/security-advisories/https://www.filecloud.com/supportdocs/display/cloud/Advisory+2022-01-2+Threat+of+CSRF+via+File+Upload