Lucene search
Std42Elfinder2.1.62
2 matches found
CVE-2023-52044
Studio-42 eLfinder 2.1.62 is vulnerable to Remote Code Execution (RCE) as there is no restriction for uploading files with the .php8 extension.
9.8CVSS7.8AI score0.0125EPSS
CVE-2023-52045
Studio-42 eLfinder 2.1.62 contains a filename restriction bypass leading to a persistent Cross-site Scripting (XSS) vulnerability.
6.1CVSS6.2AI score0.00065EPSS