Advisory 2022-12/03 Potential Sensitive File Path Exposure

Vulnerability TypeBroken access controls
Severity factors

This vulnerability has a medium severity rating.

Versions affectedFileCloud Versions 22.1 and earlier
Version fixedFileCloud Version 22.1 and later


This vulnerability allows an authenticated user access to some file names of another user.


This has been fixed in FileCloud version

What you should do to fix this vulnerability

  • If you are using FileCloud Server, it is recommended that you update to the latest version, which is or greater. This will resolve the issue.
  • If you are using FileCloud Online, your site has already been updated to the latest version.

If you have any questions about this advisory, please contact FileCloud support.