4 matches found
Exploit for Cross-Site Request Forgery (CSRF) in Filebrowser
CVE-2021-46398 Chamilo-LMS 1.11.14 RCE Chamilo LMS v1.11.14 wa...
FileBrowser 2.17.2 - Cross Site Request Forgery to Remote Code Execution Vulnerability
Exploit Title: FileBrowser 2.17.2 - Cross Site Request Forgery CSRF to Remote Code Execution RCE Exploit Author: FEBIN MON SAJI Vendor Homepage: https://filebrowser.org/ Software Link: https://github.com/filebrowser/filebrowser Version: FileBrowser setTimeoutfunction...
FileBrowser 2.17.2 Code Execution / Cross Site Request Forgery
Exploit Title: FileBrowser 2.17.2 - Cross Site Request Forgery CSRF to Remote Code Execution RCE Date: 5/2/2022 Exploit Author: FEBIN MON SAJI Vendor Homepage: https://filebrowser.org/ Software Link: https://github.com/filebrowser/filebrowser Version: FileBrowser setTimeoutfunction...
CVE-2021-46398
CVE-2021-46398 describes a Cross-Site Request Forgery in FileBrowser prior to v2.18.0 that enables an attacker to create an admin backdoor user and gain access to the server filesystem, potentially leading to Remote Code Execution (RCE). Exploitation involves luring an admin to load a crafted HTM...