8.9 High
AI Score
Confidence
High
0.005 Low
EPSS
Percentile
76.2%
In Tiny File Manager before 2.3.9, there is a remote code execution via Upload from URL and Edit/Rename files. Only authenticated users are impacted.
github.com/prasathmani/tinyfilemanager/commit/9a499734c5084e3c2eb505f100d50baac1793bd8
github.com/prasathmani/tinyfilemanager/security/advisories/GHSA-w72h-v37j-rrwr