EUVD-2022-2311

Malicious code in bioql PyPI...

GHSA-44P8-C3WV-F28R Directory Traversal in Studio 42 elFinder

Studio 42 elFinder before 2.1.37 has a directory traversal vulnerability in elFinder.class.php with the zipdl function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process. NOTE: this issue...

Directory Traversal in Studio 42 elFinder

Studio 42 elFinder before 2.1.37 has a directory traversal vulnerability in elFinder.class.php with the zipdl function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process. NOTE: this issue...

GHSA-45X3-MW7Q-WF7F elFinder Path Traversal vulnerability

Studio 42 elFinder before 2.1.36 has a directory traversal vulnerability in elFinder.class.php with the zipdl function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process...

elFinder Path Traversal vulnerability

Studio 42 elFinder before 2.1.36 has a directory traversal vulnerability in elFinder.class.php with the zipdl function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process...

Directory Traversal

studio-42/elfinder is vulnerable to directory traversals. The application does not properly validate the file parameter in the zipdl function of elFinder.class.php, allowing a malicious user to conduct a directory traversals attack, and may cause file deletion. This vulnerability exists due to an...

Directory Traversal

studio-42/elfinder is vulnerable to directory traversals. The application does not validate the file parameter of the zipdl function in elFinder.class.php, allowing a malicious user to cause a directory traversal attack and may cause file deletion...

Studio 42 elFinder on Windows Arbitrary File Deletion Vulnerability

Studio 42 elFinder on Windows is a Windows-based platform using jQuery and jQuery UI and written in JavaScript open source Web file manager . A security vulnerability exists in the 'zipdl' function of the elFinder.class.php file in versions of Studio 42 elFinder prior to 2.1.37 for Windows-based...

Studio 42 elFinder Directory Traversal Vulnerability

Studio 42 elFinder is an open source Web file manager using jQuery and jQuery UI and written in JavaScript . A directory traversal vulnerability exists in Studio 42 elFinder. An attacker can exploit this vulnerability by deleting files with the 'zipdl' function in the elFinder.class.php file...

CVE-2018-9110

Studio 42 elFinder before 2.1.37 has a directory traversal vulnerability in elFinder.class.php with the zipdl function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process. NOTE: this issue...

Directory traversal

Studio 42 elFinder before 2.1.36 has a directory traversal vulnerability in elFinder.class.php with the zipdl function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process...

CVE-2018-9109

Studio 42 elFinder before 2.1.36 has a directory traversal vulnerability in elFinder.class.php with the zipdl function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process...

CVE-2018-9109

Studio 42 elFinder (PHP Web file manager) prior to version 2.1.36 is affected by a directory traversal vulnerability in elFinder.class.php, zipdl() function. The flaw allows a remote attacker to download files accessible by the web server process and to delete files owned by the account running t...