A path traversal vulnerability in the file upload functionality in tinyfilemanager.php in Tiny File Manager before 2.4.7 allows remote attackers (with valid user accounts) to upload malicious PHP files to the webroot, leading to code execution.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-03-15T11:13:26
Updated: 2024-08-04T04:32:13.613Z
Reserved: 2021-12-13T00:00:00
Link: CVE-2021-45010
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-03-15T12:15:08.380
Modified: 2022-03-21T18:56:55.743
Link: CVE-2021-45010
Redhat
No data.