In Tiny File Manager 2.4.1, there is a Path Traversal vulnerability in the ajax recursive directory listing functionality. This allows authenticated users to enumerate directories and files on the filesystem (outside of the application scope).
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-04-28T21:01:16

Updated: 2024-08-04T11:48:58.253Z

Reserved: 2020-04-23T00:00:00

Link: CVE-2020-12102

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-04-28T21:15:11.773

Modified: 2024-11-21T04:59:14.920

Link: CVE-2020-12102

cve-icon Redhat

No data.