Server-Side Request Forgery Vulnerability in Responsive FileManager by Trippo
CVE-2020-10212

9.8CRITICAL

Key Information:

Vendor: Tecrail
Status: Responsive Filemanager
Vendor: CVE Published:; 7 March 2020

What is CVE-2020-10212?

The upload.php component of Responsive FileManager versions 9.13.4 and 9.14.0 contains a vulnerability that allows Server-Side Request Forgery (SSRF) through inadequate handling of the url parameter. This flaw can permit an attacker to exploit file-extension blocking mechanisms. By manipulating the PATH_INFO to include a .ico filename, or by constructing a DNS hostname that resolves to an internal IP address, such as 0.0.0.0, an attacker can gain unauthorized access to internal resources. This issue persists due to an incomplete resolution of a prior vulnerability, illustrating the ongoing risks associated with file upload functionalities.

References

https://github.com/trippo/ResponsiveFilemanager/issues/598

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 7, 2020
Vulnerability Reserved
Mar 6, 2020

CVE-2020-10212 Data

JSON

Tecrail

What is CVE-2020-10212?

References

CVSS V3.1

Timeline