| Reporter | Title | Published | Views | Family All 25 |
|---|---|---|---|---|
| elFinder Archive Command Injection Exploit | 15 Sep 202100:00 | – | zdt | |
| The vulnerability of the elFinder file manager stems from the incorrect implementation of authentication mechanisms, allowing attackers to execute arbitrary code. | 29 Jun 202100:00 | – | bdu_fstec | |
| CVE-2021-32682 | 14 Jun 202120:37 | – | circl | |
| elFinder 代码问题漏洞 | 14 Jun 202100:00 | – | cnnvd | |
| elFinder code issue vulnerability | 17 Jun 202100:00 | – | cnvd | |
| ElFinder File Manager Command Injection (CVE-2021-32682) | 30 Dec 202100:00 | – | checkpoint_advisories | |
| CVE-2021-32682 | 14 Jun 202116:45 | – | cve | |
| CVE-2021-32682 Multiple vulnerabilities leading to RCE | 14 Jun 202116:45 | – | cvelist | |
| elFinder before 2.1.59 contains multiple vulnerabilities leading to RCE | 16 Jun 202117:04 | – | github | |
| elFinder Archive Command Injection | 20 Sep 202117:41 | – | metasploit |
id: CVE-2021-32682
info:
name: elFinder 2.1.58 - Remote Code Execution
author: smaranchand
severity: critical
description: elFinder 2.1.58 is impacted by multiple remote code execution vulnerabilities that could allow an attacker to execute arbitrary code and commands on the server hosting the elFinder PHP connector, even with minimal configuration.
impact: |
Successful exploitation of this vulnerability could allow an attacker to execute arbitrary code on the affected system.
remediation: Update to elFinder 2.1.59 or later. As a workaround, ensure the connector is not exposed without authentication.
reference:
- https://smaranchand.com.np/2022/01/organization-vendor-application-security/
- https://blog.sonarsource.com/elfinder-case-study-of-web-file-manager-vulnerabilities
- https://github.com/Studio-42/elFinder/security/advisories/GHSA-wph3-44rj-92pr
- https://nvd.nist.gov/vuln/detail/CVE-2021-32682
- https://github.com/Studio-42/elFinder/commit/a106c350b7dfe666a81d6b576816db9fe0899b17
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2021-32682
cwe-id: CWE-22
epss-score: 0.69934
epss-percentile: 0.99292
cpe: cpe:2.3:a:std42:elfinder:*:*:*:*:*:*:*:*
metadata:
max-request: 9
vendor: std42
product: elfinder
github: https://github.com/Studio-42/elFinder
tags: cve2021,cve,elfinder,misconfig,rce,oss,std42,vuln
http:
- method: GET
path:
- "{{BaseURL}}/admin/elfinder/elfinder-cke.html"
- "{{BaseURL}}/assets/backend/elfinder/elfinder-cke.html"
- "{{BaseURL}}/assets/elFinder-2.1.9/elfinder.html"
- "{{BaseURL}}/assets/elFinder/elfinder.html"
- "{{BaseURL}}/backend/elfinder/elfinder-cke.html"
- "{{BaseURL}}/elfinder/elfinder-cke.html"
- "{{BaseURL}}/uploads/assets/backend/elfinder/elfinder-cke.html"
- "{{BaseURL}}/uploads/assets/backend/elfinder/elfinder.html"
- "{{BaseURL}}/uploads/elfinder/elfinder-cke.html"
stop-at-first-match: true
matchers-condition: and
matchers:
- type: word
words:
- "elfinder"
- "php/connector"
condition: and
- type: status
status:
- 200
# digest: 4b0a00483046022100fb4cd8fd725c37efc716dee09ad3c2ac36e704da50fe15cb3a89672cc71d2d4d022100f8d19d47b13919d695a149d2a777bfa7bdc90b9c0c023c1aabf530c7bfe308ce:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation