Arbitrary File Creation and Overwrite Vulnerability in ELECOM File Manager

Arbitrary File Creation and Overwrite Vulnerability in ELECOM File Manager

CVE-2021-20651 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Directory traversal vulnerability in ELECOM File Manager all versions allows remote attackers to create an arbitrary file or overwrite an existing file in a directory which can be accessed with the application privileges via unspecified vectors.

Learn more about our Web Application Penetration Testing UK.