Lucene search
MitreCVELIST:CVE-2022-26960HistoryMar 21, 2022 - 4:52 p.m.
CVE-2022-26960
2022-03-2116:52:38
mitre
www.cve.org
4
cve-2022-26960
path traversal
unauthorized access
file browsing
elfinder
improper file handling
connector.minimal.php in std42 elFinder through 2.1.60 is affected by path traversal. This allows unauthenticated remote attackers to read, write, and browse files outside the configured document root. This is due to improper handling of absolute file paths.
Related
openvas
openvas
elFinder < 2.1.61 Multiple Vulnerabilities - Version Check
2022-03-25 00:00:00
elFinder < 2.1.61 Directory Traversal Vulnerability - Active Check
2022-07-05 00:00:00
veracode
veracode
Path Traversal
2022-03-22 04:09:52
nvd
nvd
CVE-2022-26960
2022-03-21 17:15:07
checkpoint_advisories
checkpoint_advisories
Studio42 elFinder Directory Traversal (CVE-2022-26960)
2022-11-21 00:00:00
prion
prion
Path traversal
2022-03-21 17:15:00
nuclei
nuclei
elFinder <=2.1.60 - Local File Inclusion
2022-06-30 23:31:46
cve
cve
CVE-2022-26960
2022-03-21 17:15:07
osv
osv
Path Traversal in Studio-42 elFinder through 2.1.60
2022-03-22 00:00:41
CVE-2022-26960
2022-03-21 17:15:07
github
github
Path Traversal in Studio-42 elFinder through 2.1.60
2022-03-22 00:00:41