Vulnerabilities (CVE)

Filtered by vendor Dulldusk Subscribe
Filtered by product Phpfilemanager
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-5673 1 Dulldusk 1 Phpfilemanager 2024-06-11 N/A 6.1 MEDIUM
Vulnerability in Dulldusk's PHP File Manager affecting version 1.7.8. This vulnerability consists of an XSS through the fm_current_dir parameter of index.php. An attacker could send a specially crafted JavaScript payload to an authenticated user and partially hijack their browser session.