Responsive Filemanager Security Vulnerabilities and Issues — Responsive Filemanager CVE List

Lucene search

TecrailResponsive Filemanager

3 matches found

CVE•added 2020/03/30 10:15 p.m.•59 views

CVE-2020-11106

An issue was discovered in Responsive Filemanager through 9.14.0. In the dialog.php page, the session variable $_SESSION['RF']["view_type"] wasn't sanitized if it was already set. This made stored XSS possible if one opens ajax_calls.php and uses the "view" action and places a payload in the type p...

6.1CVSS5.8AI score0.00471EPSS

CVE•added 2018/10/10 9:29 p.m.•34 views

CVE-2018-18062

An issue was discovered in dialog.php in tecrail Responsive FileManager 9.8.1. A reflected XSS vulnerability allows remote attackers to inject arbitrary web script or HTML.

6.1CVSS5.9AI score0.00223EPSS

CVE•added 2019/02/25 6:29 a.m.•32 views

CVE-2018-20791

tecrail Responsive FileManager 9.13.4 allows XSS via a media file upload with an XSS payload in the name, because of mishandling of the media_preview action.

6.1CVSS5.9AI score0.00328EPSS