Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
elfinder vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2017-8085
In Exponent CMS prior to 2.4.1 Patch #5, XSS in elFinder is possible in framework/modules/file/connector/elfinder.php.
Exponentcms Exponent Cms
6.1
CVSSv3
CVE-2015-8684
Exponent CMS prior to 2.3.7 does not properly restrict the types of files that can be uploaded, which allows remote malicious users to conduct cross-site scripting (XSS) attacks and possibly have other unspecified impact as demonstrated by uploading a file with an .html extension...
Exponentcms Exponent Cms
NA
CVE-2013-1972
Cross-site request forgery (CSRF) vulnerability in the elFinder file manager module 6.x-0.x prior to 6.x-0.8 and 7.x-0.x prior to 7.x-0.8 for Drupal allows remote malicious users to hijack the authentication of unspecified victims to create, modify, or delete files via unknown ve...
Alexey Sukhotin Elfinder 6.x-0.6
Alexey Sukhotin Elfinder 6.x-0.7
Alexey Sukhotin Elfinder 6.x-0.4-beta3
Alexey Sukhotin Elfinder 6.x-0.5-beta2
Alexey Sukhotin Elfinder 7.x-0.6
Alexey Sukhotin Elfinder 7.x-0.7
Alexey Sukhotin Elfinder 6.x-0.4-beta1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3