Vulnerability Description
connector.minimal.php in std42 elFinder through 2.1.60 is affected by path traversal. This allows unauthenticated remote attackers to read, write, and browse files outside the configured document root. This is due to improper handling of absolute file paths.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Std42 | Elfinder | < 2.1.61 |
Related Weaknesses (CWE)
References
- https://github.com/Studio-42/elFinder/commit/3b758495538a448ac8830ee3559e7fb2c26PatchThird Party Advisory
- https://www.synacktiv.com/publications.htmlProduct
- https://www.synacktiv.com/publications/elfinder-the-story-of-a-repwning.htmlExploitTechnical DescriptionThird Party Advisory
- https://github.com/Studio-42/elFinder/commit/3b758495538a448ac8830ee3559e7fb2c26PatchThird Party Advisory
- https://www.synacktiv.com/publications.htmlProduct
- https://www.synacktiv.com/publications/elfinder-the-story-of-a-repwning.htmlExploitTechnical DescriptionThird Party Advisory
FAQ
What is CVE-2022-26960?
CVE-2022-26960 is a vulnerability with a CVSS score of 9.1 (CRITICAL). connector.minimal.php in std42 elFinder through 2.1.60 is affected by path traversal. This allows unauthenticated remote attackers to read, write, and browse files outside the configured document root...
How severe is CVE-2022-26960?
CVE-2022-26960 has been rated CRITICAL with a CVSS base score of 9.1/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2022-26960?
Check the references section above for vendor advisories and patch information. Affected products include: Std42 Elfinder.