2 matches found
elFinder 安全漏洞
elFinder is an open source web file manager from Studio 42 Open Source. A security vulnerability exists in elFinder version 2.1.62, which stems from an unrestricted upload of files with the .php8 extension and is vulnerable to remote code execution attacks...
CVE-2018-9109
Studio 42 elFinder before 2.1.36 has a directory traversal vulnerability in elFinder.class.php with the zipdl function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process...