CNNVD-202602-374 Information

CNNVD ID

CNNVD-202602-374

Related CVE

CVE-2025-46651

• CNNVD Published: 2026-02-03

Description (Chinese)

Tiny File Manager是Prasath Mani个人开发者的一款基于Web的开源文件管理器。 Tiny File Manager 2.6及之前版本存在安全漏洞，该漏洞源于URL上传功能对用户提供的URL验证不足，可能导致服务端请求伪造攻击。

Description (English)

Tiny File Manager is a Web-based open source file manager for Prasath Mani personal developers. Tiny File Manager 2.6 and earlier versions had a security loophole, which stemmed from the fact that the URL upload function did not provide sufficient URL authentication to users, which could lead to a request for a false attack by the service.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-02-03

Last Modified

2026-02-24

References

https://github.com/RobertoLuzanilla/tinyfilemanager-security-advisories/blob/main/CVE-2025-46651.md https://github.com/prasathmani/tinyfilemanager/blob/master/tinyfilemanager.php#L608