CVE-2021-40964

EPSS 8.2%

A Path Traversal vulnerability exists in TinyFileManager all version up to and including 2.4.6 that allows attackers to upload a file (with Admin credentials or with the CSRF vulnerability) with the "fullpath" parameter containing path traversal strings (../ and ..\) in order to escape the server's intended working directory and write malicious files onto any directory on the computer.

Affected products

n/a · n/a

public PoCs found — 3

githubgithub.com/Z3R0space/CVE-2021-40964★ 0 cve_referencepacketstormsecurity.com/files/166330/Tiny-File-Manager-2.4.6-Shell-Upload.htmlunverified exploitdbwww.exploit-db.com/exploits/50828unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://packetstormsecurity.com/files/166330/Tiny-File-Manager-2.4.6-Shell-Upload.html https://gist.github.com/omriinbar/953368dcdd9e5eeefd83920166099528 https://github.com/prasathmani/tinyfilemanager