A vulnerability identified as critical has been detected in error311 FileRise up to 3.15.x . This affects the function basename of the file /api/folder/uploadToSharedFolder.php of the component Shared-Folder Upload Endpoint . This manipulation of the argument fileName causes path traversal. This vulnerability is registered as CVE-2026-54414 . Remote exploitation of the attack is possible. No exploit is available. You should upgrade the affected component.