Vulnerabilities > Extplorer > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-12 | CVE-2023-29657 | Unrestricted Upload of File with Dangerous Type vulnerability in Extplorer 2.1.15 eXtplorer 2.1.15 is vulnerable to Insecure Permissions. | 8.8 |
| 2023-03-21 | CVE-2023-27842 | Unspecified vulnerability in Extplorer 2.1.15 Insecure Permissions vulnerability found in Extplorer File manager eXtplorer v.2.1.15 allows a remote attacker to execute arbitrary code via the index.php compenent | 8.8 |
| 2020-04-10 | CVE-2019-7305 | Files or Directories Accessible to External Parties vulnerability in Extplorer 2.0.0/2.1.0 Information Exposure vulnerability in eXtplorer makes the /usr/ and /etc/extplorer/ system directories world-accessible over HTTP. | 7.5 |
| 2018-10-07 | CVE-2012-6710 | Improper Authentication vulnerability in Extplorer ext_find_user in eXtplorer through 2.1.2 allows remote attackers to bypass authentication via a password[]= (aka an empty array) in an action=login request to index.php. | 7.5 |