Browse all 5 CVE security advisories affecting kodcloud. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Kodcloud is a self-hosted file management and team collaboration platform designed for enterprise document storage and sharing. Historically, the application has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its five recorded CVEs. Security researchers have identified authentication bypass weaknesses and insufficient input validation in its web interface, potentially allowing unauthorized access. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities in its core functionality suggests a need for rigorous security hardening and regular patch management for organizations implementing this solution.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-6571 | kodcloud KodExplorer systemRole.class.php roleGroupAction authorization — KodExplorerCWE-639 | 6.3 | Medium | 2026-04-19 |
| CVE-2026-6570 | kodcloud KodExplorer systemMember.class.php initInstall authorization — KodExplorerCWE-639 | 2.7 | Low | 2026-04-19 |
| CVE-2026-6569 | kodcloud KodExplorer fileGet Endpoint share.class.php improper authentication — KodExplorerCWE-287 | 7.3 | High | 2026-04-19 |
| CVE-2026-6568 | kodcloud KodExplorer Public Share share.class.php initShareOld path traversal — KodExplorerCWE-22 | 7.3 | High | 2026-04-19 |
| CVE-2025-34504 | KodExplorer 4.52 Open Redirect Vulnerability via User Login Endpoint — KodExplorerCWE-601 | 6.1AI | MediumAI | 2025-12-11 |
This page lists every published CVE security advisory associated with kodcloud. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.