CVE-2026-6569 | kodcloud KodExplorer up to 4.52 fileGet Endpoint share.class.php fileUrl improper authentication

A vulnerability described as critical has been identified in kodcloud KodExplorer up to 4.52. This impacts the function fileGet of the file /app/controller/share.class.php of the component fileGet Endpoint. Such manipulation of the argument fileUrl leads to improper authentication.

This vulnerability is uniquely identified as CVE-2026-6569. The attack can be launched remotely. No exploit exists.

The vendor was contacted early about this disclosure but did not respond in any way.VulDB Recent EntriesRead More