Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.5
Simple File List: Malicious Files Can Be Accessible on Your Server
CVE-2026-24953
Summary
A security issue in Simple File List allows hackers to access files they shouldn't be able to access on your server. This puts sensitive information at risk. Update to the latest version of Simple File List to fix this issue.
Original title
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mitchell Bennis Simple File List simple-file-list allows Path Traversal.This issue affects Simple Fil...
Original description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mitchell Bennis Simple File List simple-file-list allows Path Traversal.This issue affects Simple File List: from n/a through <= 6.1.15.
nvd CVSS3.1
6.5
Vulnerability type
CWE-22
Path Traversal
Published: 20 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026