156 matches found
CVE-2019-12905
FileRun 2019.05.21 allows XSS via the filename to the ?module=fileman§ion=do&page=up URI. This issue has been fixed in FileRun 2019.06.01...
Design/Logic Flaw
FileRun 2019.05.21 allows XSS via the filename to the ?module=fileman§ion=do&page=up URI. This issue has been fixed in FileRun 2019.06.01...
CVE-2019-12905
FileRun 2019.05.21 is affected by a cross-site scripting vulnerability that can be triggered when a filename is crafted during uploads to the path ?module=fileman§ion=do&page=up. The issue arises from processing the uploaded filename, allowing an attacker-controlled script to be reflected to ...
CVE-2019-12905
FileRun 2019.05.21 allows XSS via the filename to the ?module=fileman§ion=do&page=up URI. This issue has been fixed in FileRun 2019.06.01...
Afian AB FileRun Path Traversal Vulnerability
Afian AB FileRun is an extensible file manager from Afian AB, Sweden, that features file sharing, cloud file storage, and more. A path traversal vulnerability exists in Afian AB FileRun version 2019.05.21. The vulnerability stems from a failure of a networked system or product to properly filter...
Afian AB FileRun path traversal vulnerability (CNVD-2019-16406)
Afian AB FileRun is an extensible file manager from Afian AB, Sweden, that features file sharing, cloud file storage, and more. A path traversal vulnerability exists in Afian AB FileRun version 2019.05.21. The vulnerability stems from a failure of a networked system or product to properly filter...
CVE-2019-12459
FileRun 2019.05.21 allows customizables/plugins/audioplayer Directory Listing. This issue has been fixed in FileRun 2019.06.01...
CVE-2019-12458
FileRun 2019.05.21 allows css/ext-ux Directory Listing. This issue has been fixed in FileRun 2019.06.01...
CVE-2019-12458
FileRun 2019.05.21 allows css/ext-ux Directory Listing. This issue has been fixed in FileRun 2019.06.01...
CVE-2019-12459
FileRun 2019.05.21 allows customizables/plugins/audioplayer Directory Listing. This issue has been fixed in FileRun 2019.06.01...
CVE-2019-12457
FileRun 2019.05.21 allows images/extjs Directory Listing. This issue has been fixed in FileRun 2019.06.01...
CVE-2019-12457
FileRun 2019.05.21 allows images/extjs Directory Listing. This issue has been fixed in FileRun 2019.06.01...
Design/Logic Flaw
FileRun 2019.05.21 allows css/ext-ux Directory Listing. This issue has been fixed in FileRun 2019.06.01...
Design/Logic Flaw
FileRun 2019.05.21 allows customizables/plugins/audioplayer Directory Listing. This issue has been fixed in FileRun 2019.06.01...
Design/Logic Flaw
FileRun 2019.05.21 allows images/extjs Directory Listing. This issue has been fixed in FileRun 2019.06.01...
CVE-2019-12459
CVE-2019-12459 describes a directory listing vulnerability in FileRun 2019.05.21 related to customizables/plugins/audio_player. Multiple sources (NVD, Red Hat, CNVD) corroborate that the issue exists in FileRun and was fixed in 2019.06.01. The Red Hat entry and other records align on the same des...
CVE-2019-12459
FileRun 2019.05.21 allows customizables/plugins/audioplayer Directory Listing. This issue has been fixed in FileRun 2019.06.01...
CVE-2019-12458
CVE-2019-12458 affects FileRun; the 2019.05.21 release is vulnerable to a css/ext-ux Directory Listing issue. The vulnerability is resolved in FileRun 2019.06.01 . Documents do not provide exploitation specifics or root-cause details beyond the listing exposure. Impact is described as potential d...
CVE-2019-12458
FileRun 2019.05.21 allows css/ext-ux Directory Listing. This issue has been fixed in FileRun 2019.06.01...
CVE-2019-12457
CVE-2019-12457 affects FileRun (version 2019.05.21) and allows directory listing of images/extjs. Root cause is not fully detailed in the provided documents, but the issue has been fixed in FileRun 2019.06.01. The CVE entry is corroborated by multiple sources (NVD, Red Hat advisory) and CNVD/CVEL...