CVE-2021-40965

Posted on 2021년 9월 16일2021년 9월 16일 by admin

CVE-2021-40965

A Cross-Site Request Forgery (CSRF) vulnerability exists in TinyFileManager all version up to and including 2.4.6 that allows attackers to upload files and run OS commands by inducing the Administrator user to browse a URL controlled by an attacker.

Source: CVE-2021-40965

답글 남기기 응답 취소