Ryohei Koike

**Nome do software vulnerável e versões afetadas: ELECOM File Manager – todas as versões Descrição: A vulnerabilidade permite que invasores remotos criem um arquivo arbitrário ou sobrescrevam um arquivo existente em um diretório acessível com os privilégios do aplicativo, por meio de vetores não especificados. Recomendações: No momento, não há informações sobre uma versão mais recente que contenha uma correção para essa vulnerabilidade.

**Name of the Vulnerable Software and Affected Versions** Avast versions prior to 150918-0 **Description** A directory traversal issue allows remote attackers to delete or write to arbitrary files by crafting a specific entry in a ZIP archive. **Recommendations** For versions prior to 150918-0, update to version 150918-0 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Droidware UK Explorer+ File Manager versions prior to 2.3.3 **Description** The issue allows remote attackers to write to arbitrary files via unspecified vectors, potentially leading to unauthorized data modification or other malicious activities. **Recommendations** For versions prior to 2.3.3, update to version 2.3.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Open Explorer versions prior to 0.254 Beta **Description** A directory traversal issue in the Open Explorer application allows remote attackers to write to arbitrary files by using a crafted filename. **Recommendations** For versions prior to 0.254 Beta, update to version 0.254 Beta or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Speed Root Explorer versions prior to 3.2 Speed Explorer versions prior to 2.2 **Description** The issue allows remote attackers to write to arbitrary files via a crafted filename, potentially leading to unauthorized data modification. **Recommendations** For Speed Root Explorer versions prior to 3.2, update to version 3.2 or later. For Speed Explorer versions prior to 2.2, update to version 2.2 or later.

**Name of the Vulnerable Software and Affected Versions** ES File Explorer File Manager version 3.0.3 and earlier **Description** A directory traversal issue in the ES File Explorer File Manager application allows remote attackers to overwrite or create arbitrary files. **Recommendations** For versions prior to 3.0.4, update to version 3.0.4 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Gapless Player SimZip (aka Simple Zip Viewer) versions prior to 1.2.1 **Description** The issue allows remote attackers to overwrite or create arbitrary files via a crafted filename, due to a directory traversal vulnerability in the application. **Recommendations** For versions prior to 1.2.1, update to version 1.2.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** NeoFiler application versions 5.4.3 and earlier NeoFiler Free application versions 5.4.3 and earlier NeoFiler Lite application versions 2.4.2 and earlier **Description** The issue allows attackers to overwrite or create arbitrary files via unspecified vectors, potentially leading to unauthorized access or data modification. **Recommendations** For NeoFiler application versions 5.4.3 and earlier, update to a version later than 5.4.3. For NeoFiler Free application versions 5.4.3 and earlier, update to a version later than 5.4.3. For NeoFiler Lite application versions 2.4.2 and earlier, update to a version later than 2.4.2.

**Name of the Vulnerable Software and Affected Versions** Be Graph BeZIP versions prior to 3.10 **Description** A directory traversal issue allows remote attackers to create or overwrite arbitrary files by using a crafted archive file. **Recommendations** For versions prior to 3.10, update to version 3.10 or later to resolve the issue.