01642 06 11 11 Arrange Call

Path Traversal Vulnerability in Tiny File Manager 2.4.1 Allows Unauthorized File Enumeration

CVE-2020-12102 · HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

CVE-2020-12102

In Tiny File Manager 2.4.1, there is a Path Traversal vulnerability in the ajax recursive directory listing functionality. This allows authenticated users to enumerate directories and files on the filesystem (outside of the application scope).

Learn more about our User Device Pen Test.