mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
804 B
804 B
CVE-2019-12905
Description
FileRun 2019.05.21 allows XSS via the filename to the ?module=fileman§ion=do&page=up URI. This issue has been fixed in FileRun 2019.06.01.
POC
Reference
- http://packetstormsecurity.com/files/158173/FileRun-2019.05.21-Cross-Site-Scripting.html
- https://github.com/EmreOvunc/FileRun-Vulnerabilities/
- https://github.com/EmreOvunc/FileRun-Vulnerabilities/issues/3