Lucene search
GoogleOSV:GHSA-45X3-MW7Q-WF7FHistoryMay 13, 2022 - 1:06 a.m.
elFinder Path Traversal vulnerability
2022-05-1301:06:16
Google
osv.dev
5
elfinder
directory traversal
vulnerability
zipdl()
remote attacker
web server process
delete files
Studio 42 elFinder before 2.1.36 has a directory traversal vulnerability in elFinder.class.php with the zipdl() function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process.
References
Related
cve
cve
CVE-2018-9110
2018-03-28 14:29:00
CVE-2018-9109
2018-03-28 06:29:00
osv
osv
Directory Traversal in Studio 42 elFinder
2022-05-13 01:06:17
CVE-2018-9110
2018-03-28 14:29:00
CVE-2018-9109
2018-03-28 06:29:00
nvd
nvd
CVE-2018-9110
2018-03-28 14:29:00
CVE-2018-9109
2018-03-28 06:29:00
prion
prion
Directory traversal
2018-03-28 14:29:00
Directory traversal
2018-03-28 06:29:00
veracode
veracode
Directory Traversal
2018-05-25 02:02:04
Directory Traversal
2018-05-25 01:34:12
cvelist
cvelist
CVE-2018-9110
2018-03-28 14:00:00
CVE-2018-9109
2018-03-28 06:00:00
github
github
Directory Traversal in Studio 42 elFinder
2022-05-13 01:06:17
elFinder Path Traversal vulnerability
2022-05-13 01:06:16