Vulnerabilities > Tecrail > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-28 | CVE-2022-44276 | Unrestricted Upload of File with Dangerous Type vulnerability in Tecrail Responsive Filemanager In Responsive Filemanager < 9.12.0, an attacker can bypass upload restrictions resulting in RCE. | 9.8 |
| 2022-07-25 | CVE-2017-20145 | Path Traversal vulnerability in Tecrail Responsive Filemanager A vulnerability was found in Tecrail Responsive Filemanger up to 9.10.x and classified as critical. | 9.8 |
| 2020-03-14 | CVE-2020-10567 | Improper Input Validation vulnerability in Tecrail Responsive Filemanager An issue was discovered in Responsive Filemanager through 9.14.0. | 9.8 |
| 2020-03-07 | CVE-2020-10212 | Server-Side Request Forgery (SSRF) vulnerability in Tecrail Responsive Filemanager 9.13.4/9.14.0 upload.php in Responsive FileManager 9.13.4 and 9.14.0 allows SSRF via the url parameter because file-extension blocking is mishandled and because it is possible for a DNS hostname to resolve to an internal IP address. | 9.8 |
| 2018-08-03 | CVE-2018-14728 | Server-Side Request Forgery (SSRF) vulnerability in Tecrail Responsive Filemanager 9.13.1 upload.php in Responsive FileManager 9.13.1 allows SSRF via the url parameter. | 9.8 |