LiquidFiles CLI

by LiquidFiles Pty Ltd.v4.0.0

Last updated Jun 8, 2026

Command line utility for LiquidFiles

Install with winget

$ winget install --id LiquidFiles.LiquidFilesCLI --exact --version 4.0.0

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

About

The command line utility can be launched as it is by your scripts (no other component required) and used to upload files to LiquidFiles server, send messages, etc. It can be used manually or as part of the script with /c switch used to specify output only actual response of the server. It will use Windows Agent's API key by default but can be specified its own connection settings at command prompt parameters.

Installers · v4.0.0

Architecture	Type	Scope	Install	Download
x64	ZIP archive	-		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

8 known CVEs via NVD

high7.3Fix in v4.2.0CVE-2025-56132affects before 4.2.0Sep 30, 2025
LiquidFiles filetransfer server is vulnerable to a user enumeration issue in its password reset functionality. The application returns distinguishable responses for valid and invalid email addresses, allowing unauthenticated attackers to determine the existence of user accounts....
low3.8Fix in v4.1.2CVE-2025-46094affects before 4.1.2Aug 4, 2025
LiquidFiles before 4.1.2 allows directory traversal by configuring the pathname of a local executable file as an Actionscript.
critical9.9Fix in v4.1.2CVE-2025-46093affects before 4.1.2Aug 4, 2025
LiquidFiles before 4.1.2 supports FTP SITE CHMOD for mode 6777 (setuid and setgid), which allows FTPDrop users to execute arbitrary code as root by leveraging the Actionscript feature and the sudoers configuration.
medium5.4Patched in wingetCVE-2023-4393affects before 3.7.14Oct 29, 2023
HTML and SMTP injections on the registration page of LiquidFiles versions 3.7.13 and below, allow an attacker to perform more advanced phishing attacks against an organization.
Vendor advisory
high8.8Patched in wingetCVE-2021-43397affects before 3.6.3Nov 10, 2021
LiquidFiles before 3.6.3 allows remote attackers to elevate their privileges from Admin (or User Admin) to Sysadmin.
Vendor advisory
medium5.4Patched in wingetCVE-2021-30140affects v3.4.15Apr 6, 2021
LiquidFiles 3.4.15 has stored XSS through the "send email" functionality when sending a file via email to an administrator. When a file has no extension and contains malicious HTML / JavaScript content (such as SVG with HTML content), the payload is executed upon a click. This i...
Vendor advisory
medium6.1Patched in wingetCVE-2020-29072affects before 3.3.19Nov 24, 2020
A Cross-Site Script Inclusion vulnerability was found on LiquidFiles before 3.3.19. This client-side attack requires user interaction (opening a link) and successful exploitation could lead to encrypted e-mail content leakage via messages/sent?format=js and popup?format=js.
Vendor advisory
critical9.0Patched in wingetCVE-2020-29071affects before 3.3.19Nov 24, 2020
An XSS issue was found in the Shares feature of LiquidFiles before 3.3.19. The issue arises from the insecure rendering of HTML files uploaded to the platform as attachments, when the -htmlview URL is directly accessed. The impact ranges from executing commands as root on the se...
Vendor advisory

Source: NVD, updated 2h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Frequently asked questions

How do I install LiquidFiles CLI on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id LiquidFiles.LiquidFilesCLI --exact --version 4.0.0. winget downloads the installer from LiquidFiles Pty Ltd. and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install LiquidFiles CLI silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id LiquidFiles.LiquidFilesCLI --exact 4.0.0 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

How do I uninstall LiquidFiles CLI via winget?

Run: winget uninstall --id LiquidFiles.LiquidFilesCLI --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from LiquidFiles CLI's Apps & Features entry.

Is LiquidFiles CLI free?

LiquidFiles CLI is distributed under Proprietary. Refer to the publisher (https://docs.liquidfiles.com/clients/windows_cli.html) for the full license terms - Wingetly itself does not charge for installation.

Does LiquidFiles CLI work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls LiquidFiles CLI directly from the publisher.

How do I keep LiquidFiles CLI up to date?

Run winget upgrade --id LiquidFiles.LiquidFilesCLI --exact, or winget upgrade --all to update everything winget tracks. We index 1 version of LiquidFiles CLI from microsoft/winget-pkgs.