Security Advisory

CVE-2021-45010

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-15 11:13:26

Last updated 2024-08-04 04:32:13

Assigner mitre

State PUBLISHED

Description

A path traversal vulnerability in the file upload functionality in tinyfilemanager.php in Tiny File Manager before 2.4.7 allows remote attackers (with valid user accounts) to upload malicious PHP files to the webroot, leading to code execution.

← Browse all CVEs View on cve.org ↗