Roxy Fileman@1.4.5 Security Vulnerabilities and Issues — Roxy Fileman@1.4.5 CVE List

Lucene search

RoxyfilemanRoxy Fileman1.4.5

4 matches found

CVE•added 2019/03/21 4:0 p.m.•60 views

CVE-2018-20525

Roxy Fileman 1.4.5 allows Directory Traversal in copydir.php, copyfile.php, and fileslist.php.

9.1CVSS8.3AI score0.32924EPSS

CVE•added 2019/03/21 4:0 p.m.•60 views

CVE-2018-20526

Roxy Fileman 1.4.5 allows unrestricted file upload in upload.php.

9.8CVSS9.4AI score0.83406EPSS

CVE•added 2019/12/16 5:15 p.m.•50 views

CVE-2019-19731

Roxy Fileman 1.4.5 for .NET is vulnerable to path traversal. A remote attacker can write uploaded files to arbitrary locations via the RENAMEFILE action. This can be leveraged for code execution by uploading a specially crafted Windows shortcut file and writing the file to the Startup folder (becau...

7.5CVSS7.8AI score0.25357EPSS

CVE•added 2019/04/09 6:29 p.m.•42 views

CVE-2019-7174

Roxy Fileman 1.4.5 allows attackers to execute renamefile.php (aka Rename File), createdir.php (aka Create Directory), fileslist.php (aka Echo File List), and movefile.php (aka Move File) operations.

9.8CVSS9.4AI score0.00433EPSS