Lucene search

elFinder Command Injection v<2.1.48

🗓️ 26 Feb 2019 00:00:00Reported by AttackerKBType

elFinder v<2.1.48 Command Injection in Image Handlin

Reporter	Title	Published	Views	Family All 20
Packet Storm	elFinder PHP Connector exiftran Command Injection	12 Mar 201900:00	–	packetstorm
Packet Storm	elFinder 2.1.47 Command Injection	5 Mar 201900:00	–	packetstorm
Exploit DB	elFinder PHP Connector < 2.1.48 - 'exiftran' Command Injection (Metasploit)	13 Mar 201900:00	–	exploitdb
Exploit DB	elFinder 2.1.47 - 'PHP connector' Command Injection	4 Mar 201900:00	–	exploitdb
Cvelist	CVE-2019-9194	26 Feb 201919:00	–	cvelist
CVE	CVE-2019-9194	26 Feb 201919:29	–	cve
OpenVAS	elFinder < 2.1.48 Command Injection Vulnerability	28 Feb 201900:00	–	openvas
GithubExploit	Exploit for OS Command Injection in Std42 Elfinder	15 Mar 201918:16	–	githubexploit
Metasploit	elFinder PHP Connector exiftran Command Injection	9 Mar 201903:24	–	metasploit
0day.today	elFinder 2.1.47 - Command Injection vulnerability in the PHP connector Exploit	4 Mar 201900:00	–	zdt

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
github	www.github.com/Studio-42/elFinder/compare/6884c4f...0740028
github	www.github.com/Studio-42/elFinder/releases/tag/2.1.48
exploit-db	www.exploit-db.com/exploits/46539
exploit-db	www.exploit-db.com/exploits/46481
github	www.github.com/Studio-42/elFinder/blob/master/README.md
secsignal	www.secsignal.org/news/cve-2019-9194-triggering-and-exploiting-a-1-day-vulnerability

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Feb 2019 00:00Current

1.7Low risk

Vulners AI Score1.7

EPSS0.9641