PT-2023-22025 · Filerun · Filerun

Name of the Vulnerable Software and Affected Versions: Filerun Update 20220202 Description: A Stored XSS issue in shared files download terms allows attackers to inject JavaScript code that is executed when a user follows the crafted share link. Recommendations: For Filerun Update 20220202,...

Afian Filerun SQL Injection Vulnerability (CNVD-2022-68943)

Afian FileRun is a full-featured web-based file manager. sql injection vulnerability exists in Afian Filerun version 20220202, which stems from a lack of cleanup of the POST parameter metadata in the /?module=fileman§ion=get&page=grid page. An attacker could exploit this vulnerability to cause SQ...

Afian FileRun SQL注入漏洞

Afian FileRun is a full-featured web-based file manager. sql injection vulnerability exists in Afian Filerun version 20220202, which stems from a lack of cleanup of the POST parameter metadata in the /?module=fileman§ion=get&page=grid page. An attacker could exploit this vulnerability to cause SQ...

Afian FileRun 安全漏洞

Afian FileRun is a full-featured web-based file manager. A security vulnerability exists in Afian FileRun version 20220202, which stems from a change in the searchtikapath variable to a custom jar path that could result in remote code execution in a web server user's environment...