Known Vulnerabilities for products from Tinyfilemanager Project
Listed below are 3 of the newest known vulnerabilities associated with the vendor "Tinyfilemanager Project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-40966 json | A Stored XSS exists in TinyFileManager All version up to and including 2.4.6 in /tinyfilemanager.php when the server is given... | 5.4 - MEDIUM | 2021-09-15 | 2021-09-27 |
| CVE-2021-40965 json | A Cross-Site Request Forgery (CSRF) vulnerability exists in TinyFileManager all version up to and including 2.4.6 that allows... | 8.8 - HIGH | 2021-09-15 | 2021-09-27 |
| CVE-2021-40964 json | A Path Traversal vulnerability exists in TinyFileManager all version up to and including 2.4.6 that allows attackers to uploa... | 6.5 - MEDIUM | 2021-09-15 | 2022-05-19 |