2 matches found
Studio-42 elFinder Remote Code Execution (CVE-2022-27115)
A remote code execution vulnerability exists in Studio-42 elFinder. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2022-27115
Studio-42 elFinder 2.1.60 is vulnerable to remote code execution via a filename-based bypass during file uploads. Root cause: filename bypass allows crafted uploads to execute on the server. Affected: elFinder 2.1.60 (Windows-specific advisory notes). Impact: remote code execution with high/criti...