CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-3464

Malware in sbrugna...

6.1CVSS6.3AI score0.00471EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 4:59 p.m.•5 views

CVE-2020-11106

An issue was discovered in Responsive Filemanager through 9.14.0. In the dialog.php page, the session variable $SESSION'RF'"viewtype" wasn't sanitized if it was already set. This made stored XSS possible if one opens ajaxcalls.php and uses the "view" action and places a payload in the type...

6.1CVSS5.7AI score0.00471EPSS

Exploits1References1

NVD•added 2020/03/30 10:15 p.m.•9 views

CVE-2020-11106

6.1CVSS6AI score0.00471EPSS

Exploits1References1

Prion•added 2020/03/30 10:15 p.m.•11 views

Cross site scripting

4.3CVSS5.8AI score0.00471EPSS

Exploits1References1Affected Software1

CVE•added 2020/03/30 9:52 p.m.•65 views

CVE-2020-11106

Responsive Filemanager up to v9.14.0 contains a stored XSS in dialog.php caused by unsanitized $_SESSION['RF']['view_type'] when ajax_calls.php sets it (and then dialog.php reads it). This allows payloads injected via the type parameter in the view action to persist across navigation to dialog.ph...

6.1CVSS5.8AI score0.00471EPSS

Exploits1References1Affected Software1

OSV•added 2020/03/14 2:15 p.m.•11 views

CVE-2020-10567

An issue was discovered in Responsive Filemanager through 9.14.0. In the ajaxcalls.php file in the saveimg action in the name parameter, there is no validation of what kind of extension is sent. This makes it possible to execute PHP code if a legitimate JPEG image contains this code in the EXIF...

9.8CVSS7.2AI score

Exploits0References2

OSV•added 2019/02/25 6:29 a.m.•11 views

CVE-2018-20792

tecrail Responsive FileManager 9.13.4 allows remote attackers to read arbitrary file via path traversal with the path parameter, through the getfile action in ajaxcalls.php...

7.5CVSS7AI score

Exploits0References1

Prion•added 2019/02/25 6:29 a.m.•11 views

Path traversal

tecrail Responsive FileManager 9.13.4 allows remote attackers to read arbitrary files via path traversal with the path parameter, through the copycut action in ajaxcalls.php and the pasteclipboard action in execute.php...

5CVSS7.5AI score0.00938EPSS

Exploits1References1Affected Software1

OSV•added 2019/02/25 6:29 a.m.•11 views

CVE-2018-20794

tecrail Responsive FileManager 9.13.4 allows remote attackers to write to an arbitrary image file jpg/jpeg/png via path traversal with the path parameter, through the saveimg action in ajaxcalls.php...

7.5CVSS7.1AI score

Exploits0References1

NVD•added 2019/02/25 6:29 a.m.•9 views

CVE-2018-20794

7.5CVSS7.6AI score0.0061EPSS

Exploits1References1

CVE•added 2019/02/25 6:0 a.m.•37 views

CVE-2018-20795

CVE-2018-20795 affects tecrail Responsive FileManager 9.13.4. The vulnerability is a path traversal in file access that lets remote attackers read arbitrary files via a path parameter. Specifically, the issue is triggered through the copy_cut action in ajax_calls.php and the paste_clipboard actio...

7.5CVSS7.5AI score0.00938EPSS

Exploits1References1Affected Software1

Cvelist•added 2019/02/25 6:0 a.m.•11 views

CVE-2018-20792

tecrail Responsive FileManager 9.13.4 allows remote attackers to read arbitrary file via path traversal with the path parameter, through the getfile action in ajaxcalls.php...

7.5AI score0.00938EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by