Vulnerabilities > Tiny File Manager Project > Tiny File Manager > 2.3.8

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-17	CVE-2022-1000	Path Traversal vulnerability in Tiny File Manager Project Tiny File Manager Path Traversal in GitHub repository prasathmani/tinyfilemanager prior to 2.4.7. network low complexity tiny-file-manager-project CWE-22 critical	9.8
2022-03-15	CVE-2021-45010	Path Traversal vulnerability in Tiny File Manager Project Tiny File Manager A path traversal vulnerability in the file upload functionality in tinyfilemanager.php in Tiny File Manager before 2.4.7 allows remote attackers (with valid user accounts) to upload malicious PHP files to the webroot, leading to code execution. network low complexity tiny-file-manager-project CWE-22	8.8
2019-12-30	CVE-2019-16790	Unrestricted Upload of File with Dangerous Type vulnerability in Tiny File Manager Project Tiny File Manager In Tiny File Manager before 2.3.9, there is a remote code execution via Upload from URL and Edit/Rename files. network low complexity tiny-file-manager-project CWE-434	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.