Lucene search
GoogleOSV:CVE-2022-26960HistoryMar 21, 2022 - 5:15 p.m.
CVE-2022-26960
2022-03-2117:15:07
Google
osv.dev
7
elfinder
path traversal
unauthenticated
remote attackers
absolute file paths
connector.minimal.php in std42 elFinder through 2.1.60 is affected by path traversal. This allows unauthenticated remote attackers to read, write, and browse files outside the configured document root. This is due to improper handling of absolute file paths.
Related
veracode
veracode
Path Traversal
2022-03-22 04:09:52
nvd
nvd
CVE-2022-26960
2022-03-21 17:15:07
cvelist
cvelist
CVE-2022-26960
2022-03-21 16:52:38
openvas
openvas
elFinder < 2.1.61 Multiple Vulnerabilities - Version Check
2022-03-25 00:00:00
elFinder < 2.1.61 Directory Traversal Vulnerability - Active Check
2022-07-05 00:00:00
checkpoint_advisories
checkpoint_advisories
Studio42 elFinder Directory Traversal (CVE-2022-26960)
2022-11-21 00:00:00
prion
prion
Path traversal
2022-03-21 17:15:00
nuclei
nuclei
elFinder <=2.1.60 - Local File Inclusion
2022-06-30 23:31:46
cve
cve
CVE-2022-26960
2022-03-21 17:15:07
osv
osv
Path Traversal in Studio-42 elFinder through 2.1.60
2022-03-22 00:00:41
github
github
Path Traversal in Studio-42 elFinder through 2.1.60
2022-03-22 00:00:41