A Server Side Request Forgery (SSRF) vulnerability in elFinder prior to 2.1.46 could allow a malicious user to access the content of internal network resources. This occurs in get_remote_contents() in php/elFinder.class.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
std42 elfinder |