CVE-2022-23044 - Cyber Security News

Read Time:15 Second

Tiny File Manager version 2.4.8 allows an unauthenticated remote attacker to execute arbitrary code remotely on the server. This is possible because the application is vulnerable to CSRF, processes uploaded files server-side (instead of just returning them for download), and allows unauthenticated users to access uploaded files.

More Stories

firefox-134.0-1.fc41

FEDORA-2025-6fcde64d77 Packages in this update: firefox-134.0-1.fc41 Update description: Updated to latest upstream (134.0) Read More

January 7, 2025

firefox-134.0-1.fc40

FEDORA-2025-e8a71b6caf Packages in this update: firefox-134.0-1.fc40 Update description: Updated to latest upstream (134.0) Read More

January 7, 2025

seamonkey-2.53.20-1.el8

FEDORA-EPEL-2025-49f65941e5 Packages in this update: seamonkey-2.53.20-1.el8 Update description: Update to 2.53.20 Read More

January 7, 2025

seamonkey-2.53.20-1.fc40

FEDORA-2025-398837e1d1 Packages in this update: seamonkey-2.53.20-1.fc40 Update description: Update to 2.53.20 Read More

January 7, 2025

seamonkey-2.53.20-1.fc41

FEDORA-2025-a39068bf59 Packages in this update: seamonkey-2.53.20-1.fc41 Update description: Update to 2.53.20 Read More

January 7, 2025

USN-7187-1: Linux kernel (OEM) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This...

January 6, 2025