A path traversal vulnerability in the file upload functionality in tinyfilemanager.php in Tiny File Manager before 2.4.7 allows remote attackers (with valid user accounts) to upload malicious PHP files to the webroot, leading to code execution.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2022-03-15T11:13:26
Updated: 2024-08-04T04:32:13.613Z
Reserved: 2021-12-13T00:00:00
Link: CVE-2021-45010
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-03-15T12:15:08.380
Modified: 2024-11-21T06:31:48.350
Link: CVE-2021-45010
Redhat
No data.