Security Advisory

CVE-2024-5673

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-06 10:19:34

Last updated 2024-08-01 21:18:06

Assigner INCIBE

State PUBLISHED

Description

Vulnerability in Dulldusks PHP File Manager affecting version 1.7.8. This vulnerability consists of an XSS through the fm_current_dir parameter of index.php. An attacker could send a specially crafted JavaScript payload to an authenticated user and partially hijack their browser session.

← Browse all CVEs View on cve.org ↗