CVE-2022-26960 in elFinder
Riassunto
di MITRE • 21/03/2022
connector.minimal.php in std42 elFinder through 2.1.60 is affected by path traversal. This allows unauthenticated remote attackers to read, write, and browse files outside the configured document root. This is due to improper handling of absolute file paths.
If you want to get best quality of vulnerability data, you may have to visit VulDB.