Lucene search
China National Vulnerability DatabaseCNVD-2021-53904HistoryJun 17, 2021 - 12:00 a.m.
Studio-42 Elfinder Remote Code Execution Vulnerability
2021-06-1700:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
vulnerability
open source
web file manager
remote code execution
server error
parsing
.phar
php
attacker
EPSS
0.023
Percentile
89.9%
Studio-42 Elfinder is an open source web file manager. Studio-42 Elfinder suffers from a remote code execution vulnerability that stems from a server error when parsing .phar into php. An attacker could give cause code remote execution through this vulnerability.
Related
cve
cve
CVE-2021-23394
2021-06-13 11:15:14
cvelist
cvelist
CVE-2021-23394 Remote Code Execution (RCE)
2021-06-13 11:05:11
github
github
elFinder unsafe upload filtering leading to remote code execution
2021-06-15 15:51:02
veracode
veracode
Unrestricted File Upload
2021-06-14 07:29:23
nvd
nvd
CVE-2021-23394
2021-06-13 11:15:14
prion
prion
Remote code execution
2021-06-13 11:15:00
osv
osv
elFinder unsafe upload filtering leading to remote code execution
2021-06-15 15:51:02
CVE-2021-23394
2021-06-13 11:15:14
sonarsource
sonarsource
elFinder - A Case Study of Web File Manager Vulnerabilities
2021-08-17 00:00:00