A vulnerability was found in elFinder.NetCore (unknown version) and classified as critical. This issue affects the function Path.Combine. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com.
elFinder.NetCore Path.Combine path traversal
- Virtual Patching
- September 2, 2021
- 9:04 am
- Virtual Patching
- September 2, 2021
- 9:04 am
Common Vulnerabilityies and Exposures
Contact us to get started
CVE-2022-1840 : Home Clean Services Management System Stored Cross-Site Scripting (XSS)
Description Persistent XSS (or Stored XSS) attack is one of the three major categories of XSS attacks, the others being
CVE-2022-1558 : Multiple Stored Cross-Site Scripting vulnerabilities in WordPress curtain plugin 1.0.2
Description Several Cross-Site Scripting vulnerabilities in the Curtain WordPress plugin. Due to these Cross-Site Scripting vulnerabilities, an attacker would be
CVE-2022-AVAST2 : Self-Defense Bypass via Repairing Function
Description It was noted that there is security checking to prevent some of the Avast processes from loading of undesired/unsigned