CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-27115

In Studio-42 elFinder 2.1.60, there is a vulnerability that causes remote code execution through file name bypass for file upload.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.148

EPSS Ranking 94.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2022-27115

Std42 » Elfinder » Version: 2.1.60

cpe:2.3:a:std42:elfinder:2.1.60
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved