Webfileexplorer Web File Explorer vulnerabilities
3 known vulnerabilities affecting webfileexplorer/web_file_explorer.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2009-1314P3CRITICALCVSS 10.0PoCv3.12009-04-17
CVE-2009-1314 [CRITICAL] CVE-2009-1314: body.asp in Web File Explorer 3.1 allows remote attackers to create arbitrary files and execute arbi
body.asp in Web File Explorer 3.1 allows remote attackers to create arbitrary files and execute arbitrary code via the savefile action with a file parameter containing a filename that has an executable extension.
nvd
CVE-2009-1323P3HIGHCVSS 7.5PoCv3.12009-04-17
CVE-2009-1323 [HIGH] CWE-89 CVE-2009-1323: SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute
SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
nvd
CVE-2009-1495P3MEDIUMCVSS 5.0PoCv3.12009-05-01
CVE-2009-1495 [MEDIUM] CWE-264 CVE-2009-1495: Web File Explorer 3.1 stores sensitive information under the web root with insufficient access contr
Web File Explorer 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/db.mdb.
nvd