CVE-2021-40964

MEDIUM

TinyFileManager <=2.4.6 - Path Traversal

Title source: llm

Description

A Path Traversal vulnerability exists in TinyFileManager all version up to and including 2.4.6 that allows attackers to upload a file (with Admin credentials or with the CSRF vulnerability) with the "fullpath" parameter containing path traversal strings (../ and ..\) in order to escape the server's intended working directory and write malicious files onto any directory on the computer.

Exploits (3)

nomisec WORKING POC

by Z3R0-0x30 · poc

https://github.com/Z3R0-0x30/CVE-2021-40964

View Code ZIP pw:eip

nomisec WORKING POC

by Z3R0space · poc

https://github.com/Z3R0space/CVE-2021-40964

View Code ZIP pw:eip

exploitdb WORKING POC

shellwebappsphp

https://www.exploit-db.com/exploits/50828

View on exploitdb

References (3)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/166330/Tiny-File-Manager-2.4.6-Shell-Upload.html

[Third Party Advisory] https://gist.github.com/omriinbar/953368dcdd9e5eeefd83920166099528

[Product, Third Party Advisory] https://github.com/prasathmani/tinyfilemanager

Scores

CVSS v3 6.5

EPSS 0.0828

EPSS Percentile 92.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Classification

CWE

CWE-22

Status published

Affected Products (1)

prasathmani/tiny_file_manager < 2.4.6

Timeline

Published Sep 15, 2021

Tracked Since Feb 18, 2026