CVE-2022-25241
HIGHFileCloud < 21.3.0.18447 - Cross-Site Request Forgery via CSV User Import
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2022-25241. PoCs published by Masashi Fujiwara.
AI-analyzed exploit summary This is a working PoC for a CSRF vulnerability in FileCloud versions prior to 21.3, allowing an attacker to create a new admin user via a crafted CSV upload. The exploit leverages a CSRF attack when cookies are set with SameSite=None.
Description
In FileCloud before 21.3, the CSV user import functionality is vulnerable to Cross-Site Request Forgery (CSRF).
Exploits (1)
exploitdb
WORKING POC
by Masashi Fujiwara · textwebappsphp
https://www.exploit-db.com/exploits/50774
This is a working PoC for a CSRF vulnerability in FileCloud versions prior to 21.3, allowing an attacker to create a new admin user via a crafted CSV upload. The exploit leverages a CSRF attack when cookies are set with SameSite=None.
Classification
Working Poc 100%
Attack Type
Auth Bypass
Complexity
Trivial
Reliability
Reliable
Target:
FileCloud < 21.3
No auth needed
Prerequisites:
Cookies must have SameSite=None · HTTPS must be used for the target URL
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (3)
Core 3
Core References
Third Party Advisory x_refsource_misc
https://herolab.usd.de/security-advisories/
Vendor Advisory x_refsource_misc
https://www.filecloud.com/supportdocs/display/cloud/Advisory+2022-01-3+Threat+of+CSRF+via+User+Creation
Exploit, Third Party Advisory x_refsource_misc
http://packetstormsecurity.com/files/166074/FileCloud-21.2-Cross-Site-Request-Forgery.html
Scores
CVSS v3
8.8
EPSS
0.0327
EPSS Percentile
86.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-352
Status
published
Products (1)
filecloud/filecloud
< 21.3.0.18447
Published
Feb 16, 2022
Tracked Since
Feb 18, 2026