Vulners
Lucene search
3 matches found
Server side request forgery (ssrf)
An SSRF vulnerability in the "Upload from URL" feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to retrieve HTTP and FTP files from the internal server network by inserting an internal address...
4CVSS6.2AI score0.01304EPSS
Exploits1References2Affected Software1
Directory traversal
A Directory Traversal vulnerability in the Unzip feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to write files to arbitrary directories via relative paths in ZIP archives...
4CVSS6.3AI score0.01705EPSS
Exploits1References2Affected Software1
CVE-2021-33213
An SSRF vulnerability in the "Upload from URL" feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users to retrieve HTTP and FTP files from the internal server network by inserting an internal address...
6.4AI score0.01304EPSS
Exploits1References2
20