Описание
In Tiny File Manager 2.4.1, there is a Path Traversal vulnerability in the ajax recursive directory listing functionality. This allows authenticated users to enumerate directories and files on the filesystem (outside of the application scope).
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:prasathmani:tiny_file_manager:2.4.1:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.0113
Низкий
7.7 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 7.7
github
больше 3 лет назад
In Tiny File Manager 2.4.1, there is a Path Traversal vulnerability in the ajax recursive directory listing functionality. This allows authenticated users to enumerate directories and files on the filesystem (outside of the application scope).
EPSS
Процентиль: 78%
0.0113
Низкий
7.7 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-22