Path Traversal Vulnerability in TecRail Responsive FileManager
CVE-2018-20794

7.5HIGH

Key Information:

Vendor: Tecrail
Status: Responsive Filemanager
Vendor: CVE Published:; 25 February 2019

Badges

👾 Exploit Exists

What is CVE-2018-20794?

The Responsive FileManager from TecRail in version 9.13.4 is vulnerable to path traversal attacks. This vulnerability permits remote attackers to manipulate the path parameter in the save_img action of ajax_calls.php, allowing them to write data to arbitrary image files such as jpg, jpeg, and png. Exploitation of this vulnerability can lead to unauthorized access and potentially compromise the integrity of the affected system.

References

https://www.exploit-db.com/exploits/45987

exploitx_refsource_EXPLOIT-DB

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Feb 25, 2019
👾
Exploit known to exist
Feb 25, 2019
Vulnerability published
Feb 25, 2019
Vulnerability Reserved
Feb 25, 2019

CVE-2018-20794 Data

JSON

Tecrail

Badges

What is CVE-2018-20794?

References

CVSS V3.1

Timeline