Approved changes feed: RSS · Atom
cpe:2.3:a:afian:filerun:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Afian (a9c2d2eb-a49c-568e-85b1-6c84fb2c8fe6) |
|---|---|
| Product | Filerun (b2ba6148-da05-5c9a-9537-3aaf13e2cada) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:docker/filerun/filerun |
purl2cpe | 2026-06-01 10:14:50.400897 |
pkg:github/filerun/docker |
purl2cpe | 2026-06-01 10:14:50.400900 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-28876 |
vulnerable | 2026-06-08 06:02:36.581039 |
Details available
A Broken Access Control issue in comments to uploaded files in Filerun through Update 20220202 allows attackers to delete comments on files uploaded by other users.
Published: 2023-12-06T00:00:00.000Z
Updated: 2024-08-02T13:51:38.973Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-35505 |
vulnerable | 2026-06-08 05:32:48.878915 |
Details available
Afian FileRun 2021.03.26 allows Remote Code Execution (by administrators) via the Check Path value for the magick binary.
Published: 2021-10-05T12:00:17.000Z
Updated: 2024-08-04T00:40:46.463Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-35504 |
vulnerable | 2026-06-08 05:32:48.878508 |
Details available
Afian FileRun 2021.03.26 allows Remote Code Execution (by administrators) via the Check Path value for the ffmpeg binary.
Published: 2021-10-05T11:59:27.000Z
Updated: 2024-08-04T00:40:46.597Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-12905 |
vulnerable | 2026-06-08 05:12:40.631785 |
Details available
FileRun 2019.05.21 allows XSS via the filename to the ?module=fileman§ion=do&page=up URI. This issue has been fixed in FileRun 2019.06.01.
Published: 2019-06-20T15:24:58.000Z
Updated: 2024-08-04T23:32:55.585Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-12459 |
vulnerable | 2026-06-08 05:12:39.174180 |
Details available
FileRun 2019.05.21 allows customizables/plugins/audio_player Directory Listing. This issue has been fixed in FileRun 2019.06.01.
Published: 2019-05-30T12:30:46.000Z
Updated: 2024-08-04T23:17:40.032Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-12458 |
vulnerable | 2026-06-08 05:12:39.173831 |
Details available
FileRun 2019.05.21 allows css/ext-ux Directory Listing. This issue has been fixed in FileRun 2019.06.01.
Published: 2019-05-30T12:30:36.000Z
Updated: 2024-08-04T23:17:40.246Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-12457 |
vulnerable | 2026-06-08 05:12:39.173217 |
Details available
FileRun 2019.05.21 allows images/extjs Directory Listing. This issue has been fixed in FileRun 2019.06.01.
Published: 2019-05-30T12:30:24.000Z
Updated: 2024-08-04T23:17:40.068Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-7735 |
vulnerable | 2026-06-08 05:12:04.032177 |
Details available
Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=metadata§ion=cpanel&page=list_filetypes request.
Published: 2018-03-06T19:00:00.000Z
Updated: 2024-09-17T01:16:47.828Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-7734 |
vulnerable | 2026-06-08 05:12:04.031752 |
Details available
Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=users§ion=cpanel&page=list request.
Published: 2018-03-06T19:00:00.000Z
Updated: 2024-09-17T01:25:29.719Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.