CVE-2026-54414 | error311 FileRise up to 3.15.x Shared-Folder Upload Endpoint uploadToSharedFolder.php basename fileName path traversal

A vulnerability identified as critical has been detected in error311 FileRise up to 3.15.x. This affects the function basename of the file /api/folder/uploadToSharedFolder.php of the component Shared-Folder Upload Endpoint. This manipulation of the argument fileName causes path traversal.

This vulnerability is registered as CVE-2026-54414. Remote exploitation of the attack is possible. No exploit is available.

You should upgrade the affected component.VulDB Recent EntriesRead More