Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2018-20526

Published: 21/03/2019 Updated: 22/03/2019
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Roxyfileman

Vulnerability Summary

Roxy Fileman 1.4.5 allows unrestricted file upload in upload.php.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

roxyfileman roxy fileman 1.4.5

Exploits

Exploit DB: Roxy Fileman 1.4.5 - Unrestricted File Upload / Directory Traversal
====================================================================== Exploit Title:: Multiple Vulnerabilities Software: Roxy Fileman Version: 145 Vendor Homepage: wwwroxyfilemancom/ Software Link: wwwroxyfilemancom/downloadphp?f=145-php CVE number: CVE-2018-20525, CVE-2018-20526 Found: 2018-12-07 Tested on: PHP 70, Ubuntu ...
Exploit DB: Roxy Fileman 1.4.5 File Upload / Directory Traversal
Roxy Fileman version 145 suffers from remote file upload and directory traversal vulnerabilities ...

References

CWE-434https://www.exploit-db.com/exploits/46085/http://packetstormsecurity.com/files/151033/Roxy-Fileman-1.4.5-File-Upload-Directory-Traversal.htmlhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/46085
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook