Project

General

Profile

News

eXtplorer - PHP-based File Manager: eXtplorer 2.1.13 has been released

Added by Sören Eberhardt-Biermann 7 days ago

A new version of eXtplorer (v2.1.13) has been released. It's fixes various security issues reported by Mario Korth. An update is highly recommended.
The following changes have been made:

--- version 2.1.13 ---
- fixed various security issues reported by Mario Korth: * potential XSS * Arbitrary file read * Path traversal in listing directory contents * Path traversal in archive feature
- added new turkish translations

eXtplorer - PHP-based File Manager: eXtplorer 2.1.10 has been released (1 comment)

Added by Sören Eberhardt-Biermann almost 2 years ago

eXtplorer version 2.1.10 has been released!

These are the changes:
- fixed vulnerability discovered by ADLab of Venustech (command injection, but requires admin access)
- webdav display UPPER/CASE/FULL/PATH with some webdav client
- standalone extplorer webdav does not work with PHP7
- CVE-2016-4313: archive path traversal vulnerability in extplorer 2.1.9
- #202 Users with read only permissions should not be able to extract archives.
- added indonesian language files

An update is highly recommended.

eXtplorer - PHP-based File Manager: eXtplorer 2.1.6 released

Added by Sören Eberhardt-Biermann over 4 years ago

eXtplorer Version 2.1.6 has been released with the following changes:

- fixed https usage for ports other than 443
- fixed XSS issue related to PHP_SELF
- added date range filtering to file search
- simplified search function
- fixed scrambled non-ASCII file names on UTF-8 systems

Please update to this new eXtplorer version as it fixes an XSS security issue. Also the UTF-8 fix is recommended for users with non-ASCII filenames.

(1-10/23)

Also available in: Atom