WebfileexplorerCVEs & Vulnerabilities
3 CVEs affecting Webfileexplorer products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
3 CVEs→ All vendors
Most Affected Products
web file explorer 3
CVE-2009-1495MEDIUMpoc
Web File Explorer 3.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/db.mdb.
1 May 2009
5.0
CVSS
CVE-2009-1323HIGHpoc
SQL injection vulnerability in body.asp in Web File Explorer 3.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
17 Apr 2009
7.5
CVSS
CVE-2009-1314CRITICALpoc
body.asp in Web File Explorer 3.1 allows remote attackers to create arbitrary files and execute arbitrary code via the savefile action with a file parameter containing a filename that has an executable extension.
17 Apr 2009
10.0
CVSS
← PrevPage 1 / 1Next →