CVE-2021-43421

9.8CRITICAL

A File Upload vulnerability exists in Studio-42 elFinder 2.0.4 to 2.1.59 via connector.minimal.php, which allows a remote malicious user to upload arbitrary files and execute PHP code.

Published: 4/7/2022Updated: 11/21/2024
View on NVDView on MITRE

Description

A File Upload vulnerability exists in Studio-42 elFinder 2.0.4 to 2.1.59 via connector.minimal.php, which allows a remote malicious user to upload arbitrary files and execute PHP code.

AI AnalysisPowered by AI

Affected Products

std42elfinder

References