Persistent Cross-site Scripting (XSS) Vulnerability in eLfinder 2.1.62
CVE-2023-52045

Currently unrated

Key Information:

Vendor
Studio-42
Status
Elfinder
Vendor
CVE Published:
31 October 2024

Summary

Studio-42 eLfinder 2.1.62 contains a filename restriction bypass leading to a persistent Cross-site Scripting (XSS) vulnerability.

References

https://github.com/Studio-42/elFinder/issues/3617

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.