Dulldusk Phpfilemanager — known CVE vulnerabilities
Every CVE whose affected-product data names Dulldusk Phpfilemanager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-53894 — CVSS 9.8 (critical): phpfm 1.7.9 contains an authentication bypass vulnerability that allows attackers to log in by exploiting loose type comparison in password…
CVE-2019-25632 — CVSS 6.2 (medium): phpFileManager 1.7.8 contains a local file inclusion vulnerability that allows unauthenticated attackers to read arbitrary files by…
CVE-2024-5673 — CVSS 6.1 (medium): Vulnerability in Dulldusk's PHP File Manager affecting version 1.7.8. This vulnerability consists of an XSS through the fm_current_dir…