CVE-2022-1496

Use after free in File Manager in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via specific and direct user interaction...

CVE-2022-1496

CVE-2022-1496 : Use-after-free in File Manager of Google Chrome before 101.0.4951.41 can allow a remote attacker to potentially exploit heap corruption via specific and direct user interaction. Affected product: Google Chrome/Chromium File Manager. Root cause: use-after-free vulnerability in File...

CVE-2022-1496

Use after free in File Manager in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via specific and direct user interaction...

CVE-2022-1496

Use after free in File Manager in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to potentially exploit heap corruption via specific and direct user interaction...

CVE-2022-1648

Pandora FMS v7.0NG.760 and below allows a relative path traversal in File Manager where a privileged user could upload a .php file outside the intended images directory which is restricted to execute the .php file. The impact could lead to a Remote Code Execution with running application privileg...

Path traversal

Pandora FMS v7.0NG.760 and below allows a relative path traversal in File Manager where a privileged user could upload a .php file outside the intended images directory which is restricted to execute the .php file. The impact could lead to a Remote Code Execution with running application privileg...

CVE-2022-1648

CVE-2022-1648 affects Pandora FMS v7.0NG.760 and earlier. A relative path traversal in the File Manager can let a privileged user upload a .php file outside the intended images directory, which is restricted from executing the file, potentially leading to Remote Code Execution with the running ap...

CVE-2022-1648 Relative Path Traversal to Remote Code Execution in File Manager

Pandora FMS v7.0NG.760 and below allows a relative path traversal in File Manager where a privileged user could upload a .php file outside the intended images directory which is restricted to execute the .php file. The impact could lead to a Remote Code Execution with running application privileg...

Artica Pandora FMS 路径遍历漏洞

Artica Pandora FMS is a monitoring system from the Spanish company Artica. The system monitors networks, servers, virtual infrastructures, applications, etc. in a visual way. A security vulnerability exists in Artica Pandora FMS version v7.0NG.760 and earlier versions, which originates from...

PT-2022-14023 · Unknown · Pandora Fms

Name of the Vulnerable Software and Affected Versions: Pandora FMS versions 7.0NG.760 and below Description: The issue allows a relative path traversal in the File Manager, enabling a privileged user to upload a .php file outside the intended images directory. This could lead to a Remote Code...

CVE-2022-2032

In Pandora FMS v7.0NG.761 and below, in the file manager section, the dirname parameter is vulnerable to a Stored Cross Site-Scripting. This vulnerability can be exploited by an attacker with administrator privileges logged in the system...

CVE-2022-2032

In Pandora FMS v7.0NG.761 and below, in the file manager section, the dirname parameter is vulnerable to a Stored Cross Site-Scripting. This vulnerability can be exploited by an attacker with administrator privileges logged in the system...

Cross site scripting

In Pandora FMS v7.0NG.761 and below, in the file manager section, the dirname parameter is vulnerable to a Stored Cross Site-Scripting. This vulnerability can be exploited by an attacker with administrator privileges logged in the system...

CVE-2022-2032 Stored Cross Site-Scripting in File Manager

In Pandora FMS v7.0NG.761 and below, in the file manager section, the dirname parameter is vulnerable to a Stored Cross Site-Scripting. This vulnerability can be exploited by an attacker with administrator privileges logged in the system...

CVE-2022-2032

Pandora FMS, versions 7.0NG.761 and earlier, contains a stored XSS flaw in the file manager where the dirname parameter is susceptible to injection. The vulnerability can be exploited by an administrator logged into the system, potentially impacting confidentiality and integrity of data. The link...

CVE-2017-20145

A vulnerability was found in Tecrail Responsive Filemanger up to 9.10.x and classified as critical. The manipulation leads to path traversal. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 9.11.0 is able to address this issu...

Artica Pandora FMS 跨站脚本漏洞

Artica Pandora FMS is a monitoring system from the Spanish company Artica. The system monitors networks, servers, virtual infrastructures, applications, etc. in a visual way. A security vulnerability exists in Artica Pandora FMS v7.0NG.761 and earlier versions, which stems from the dirname...

PT-2022-14545 · Unknown · Pandora Fms

Name of the Vulnerable Software and Affected Versions: Pandora FMS versions 7.0NG.761 and below Description: The issue is related to a Stored Cross Site-Scripting vulnerability in the file manager section, specifically affecting the dirname parameter. This can be exploited by an attacker with...

CVE-2022-1141

Use after free in File Manager in Google Chrome prior to 100.0.4896.60 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via specific user gesture...

CVE-2022-1141

Use after free in File Manager in Google Chrome prior to 100.0.4896.60 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corruption via specific user gesture...