fileadmin.php in Libra File Manager (aka Libra PHP File Manager) 1.18 and previous versions allows remote malicious users to bypass authentication, and read arbitrary files, modify arbitrary files, and list arbitrary directories, by inserting certain user and isadmin parameters in the query string.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libra file manager php filemanager 1.05 |
||
libra file manager php filemanager 1.08 |
||
libra file manager php filemanager |
||
libra file manager php filemanager 1.17 |
||
libra file manager php filemanager 1.00 |
||
libra file manager php filemanager 1.03 |