CVE-2018-18061

Published: Oct 10, 2018Modified: Nov 21, 2024

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

An issue was discovered in dialog.php in tecrail Responsive FileManager 9.8.1. Attackers can access the file manager interface that provides them with the ability to upload and delete files.

Affected (1)

Products: Tecrail: Responsive Filemanager

Tecrail

1 product

Responsive Filemanager

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Tecrail Responsive Filemanager	Version 9.8.1

Related CWEs

CWE-287

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (2)

https://seclists.org/bugtraq/2018/Oct/25

Source: cve@mitre.org

ExploitMailing ListThird Party Advisory

https://seclists.org/bugtraq/2018/Oct/25

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitMailing ListThird Party Advisory

Timeline

No history available yet.