Known Vulnerabilities for Http Commander by Element-it
Listed below are 5 of the newest known vulnerabilities associated with "Http Commander" by "Element-it".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-24573 json | A stored cross-site scripting (XSS) vulnerability in the admin interface in Element-IT HTTP Commander 7.0.0 allows unauthenti... | Not Provided | 2022-03-03 | 2026-07-04 |
| CVE-2021-40813 json | A cross-site scripting (XSS) vulnerability in the "Zip content" feature in Element-IT HTTP Commander 3.1.9 allows remote auth... | 5.4 - MEDIUM | 2022-01-13 | 2022-01-22 |
| CVE-2021-33213 json | An SSRF vulnerability in the "Upload from URL" feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated users ... | 6.5 - MEDIUM | 2021-07-14 | 2021-07-16 |
| CVE-2021-33212 json | A Cross-site scripting (XSS) vulnerability in the "View in Browser" feature in Elements-IT HTTP Commander 5.3.3 allows remote... | 5.4 - MEDIUM | 2021-07-14 | 2021-07-16 |
| CVE-2021-33211 json | A Directory Traversal vulnerability in the Unzip feature in Elements-IT HTTP Commander 5.3.3 allows remote authenticated user... | 6.5 - MEDIUM | 2021-07-14 | 2021-07-16 |