Unrated severityNVD Advisory· Published Nov 25, 2022· Updated Apr 29, 2025

CVE-2022-45476

Description

Tiny File Manager version 2.4.8 executes the code of files uploaded by users of the application, instead of just returning them for download. This is possible because the application is vulnerable to insecure file upload.

Affected products

Prasathmani/Tinyfilemanagerinferred
Range: = 2.4.8

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

fluidattacks.com/advisories/mosey/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000