CVE-2013-3921

Name of the Vulnerable Software and Affected Versions Easy File Manager version 1.1

Description A directory traversal issue allows remote attackers to read arbitrary files by providing a ..%2f (encoded dot dot slash) to the default URI.

Recommendations For Easy File Manager version 1.1, consider restricting access to the default URI until a patch is available. As a temporary workaround, avoid using the default URI with encoded dot dot slash sequences.