filebrowser < 2.23.0 - Authenticated Stored Cross-Site Scripting via Crafted HTML File
A cross-site scripting (XSS) vulnerability in FileBrowser before v2.23.0 allows an authenticated attacker to escalate privileges to Administrator via user interaction with a crafted HTML file or URL.