FileCodeBox 2.0 stores a OneDrive password and AWS key in a cleartext env file.
oryginał ENCVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LLanol Filecodebox
APPLanol2.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Powiązane podatności
CVE-2025-51661HIGH7.5ten sam produkt
A path Traversal vulnerability found in FileCodeBox v2.2 and earlier allows arbitrary file writes when applica...
CVE-2025-51663HIGH7.5ten sam produkt
A vulnerability found in IPRateLimit implementation of FileCodeBox up to 2.2 allows remote attackers to bypass...
CVE-2025-51662MEDIUM5.4ten sam produkt
A stored cross-site scripting (XSS) vulnerability is found in the text sharing feature of FileCodeBox version ...