Main Vulnerability Database Exploits ID:6177 - Exploit for Server-Side Request Forgery (SSRF) in Responsive FileManager - CVE-2018-14728

ID:6177 - Exploit for Server-Side Request Forgery (SSRF) in Responsive FileManager - CVE-2018-14728

Published: June 17, 2021

Vulnerability identifier: #VU36797

Vulnerability risk: High

CVE-ID: CVE-2018-14728

CWE-ID: CWE-918

Exploitation vector: Remote access

Vulnerable software:
Responsive FileManager

Link to public exploit:

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

upload.php in Responsive FileManager 9.13.1 allows SSRF via the url parameter.

Install update from vendor's website.