vendor:
Free File Hosting
by:
7.5
CVSS
HIGH
Remote File-Include
CWE
Product Name: Free File Hosting
Affected Version From: 1.1
Affected Version To: 1.1
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
Free File Hosting Multiple Remote File-Include Vulnerabilities
Multiple remote file-include vulnerabilities exist in Free File Hosting due to insufficient sanitization of user-supplied data. Exploiting these vulnerabilities can lead to compromise of the application and the underlying system, as well as other possible attacks.
Mitigation:
Properly sanitize user-supplied data to prevent remote file-include vulnerabilities. Regularly update the Free File Hosting software to the latest version.