Cross-site scripting (XSS) vulnerability in ONEdotOH Simple File Manager (SFM) prior to 0.21 allows remote malicious users to inject arbitrary web script or HTML via (1) file names and (2) directory names.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
onedotoh simple file manager |