High severity7.5OSV Advisory· Published Aug 18, 2018· Updated Jun 17, 2026
CVE-2018-15495
CVE-2018-15495
Description
/filemanager/upload.php in Responsive FileManager before 9.13.3 allows Directory Traversal and SSRF because the url parameter is used directly in a curl_exec call, as demonstrated by a file:///etc/passwd value.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
29.9, 9.9.1, 9.9.2, …+ 1 more
- (no CPE)range: 9.9, 9.9.1, 9.9.2, …
- (no CPE)range: <9.13.3
Patches
Vulnerability mechanics
References
2- seclists.org/fulldisclosure/2018/Aug/9nvdExploitMailing ListThird Party Advisory
- github.com/trippo/ResponsiveFilemanager/blob/master/changelog.txtnvdThird Party Advisory
News mentions
0No linked articles in our index yet.