Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Studio 42 elFinder before 2.1.37 has a directory traversal vulnerability in elFinder.class.php with the zipdl() function that can allow a remote attacker to download files accessible by the web server process and delete files owned by the account running the web server process. NOTE: this issue exists because of an incomplete fix for CVE-2018-9109.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Studio 42 elFinder on Windows 安全漏洞
Vulnerability Description
Studio 42 elFinder on Windows是一款基于Windows平台的使用jQuery和jQuery UI并以JavaScript编写的开源Web文件管理器。 基于Windows平台的Studio 42 elFinder 2.1.37之前版本中的elFinder.class.php文件的‘zipdl()’函数存在安全漏洞。攻击者可利用该漏洞删除文件。
CVSS Information
N/A
Vulnerability Type
N/A