8 matches found
Library File Manager < 5.2.3 - Subscriber+ Arbitrary File Creation/Upload/Deletion
The plugin is using an outdated version of the elFinder library, which is know to be affected by security issues CVE-2021-32682, and does not have any authorisation as well as CSRF checks in its connector AJAX action, allowing any authenticated users, such as subscriber to call it. Furthermore, a...
ElFinder File Manager Command Injection (CVE-2021-32682)
A command injection vulnerability exists in ElFinder. The vulnerability is due to insufficient validation of the file name when creating an archive...
elFinder Archive Command Injection
elFinder versions below 2.1.59 are vulnerable to a command injection vulnerability via its archive functionality. When creating a new zip archive, the name parameter is sanitized with the escapeshellarg php function and then passed to the zip utility. Despite the sanitization, supplying the -TmTT...
Metasploit Wrap-Up
Clone your way to code execution We’ve had a busy week bringing you exploits, features, enhancements, and fixes. Exploit modules for Git and El Finder lead the pack this week with an information disclosure against Jira and a post exploitation module targeting Geutebruck white-labelled cameras to...
elFinder Archive Command Injection
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'elFinder Archive Command Injection', 'Description' = %q elFinder versions below 2.1.59 are vulnerable to a command injection vulnerability via it...
elFinder - A Case Study of Web File Manager Vulnerabilities
An application’s interaction with the file system is always highly security sensitive, since minor functional bugs can easily be the source of exploitable vulnerabilities. This observation is especially true in the case of web file managers, whose role is to replicate the features of a complete...
elFinder < 2.1.59 Multiple Vulnerabilities (GHSA-wph3-44rj-92pr)
elFinder is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:std42:elfinder"; ifdescription...
CVE-2021-32682
creationtimestamp| type| source ---|---|--- 2021-06-14 20:37:46+00:00| seen| https://t.me/cibsecurity/25440 2021-08-23 12:07:01+00:00| seen| https://t.me/CyberSecurityTechnologies/4133 2021-08-30 20:03:05+00:00| seen| https://t.me/cKure/6873 2021-09-14 18:27:38+00:00| seen|...