CVE-2018-15536
/Practice/Apex/3-Exploitation/attachments/{424F4E79-C12A-4F1A-8993-509013376FFA}-1.png)
A vulnerability was found in Responsive Filemanager up to 9.13.3. It has been rated as critical. This issue affects some unknown processing of the file /filemanager/ajax_calls.php of the component Archive Handler. The manipulation with an unknown input leads to a path traversal vulnerability. Using CWE to declare the problem leads to CWE-22. The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. Impacted is integrity, and availability.