Vittawat Masaree

Name of the Vulnerable Software and Affected Versions: Roxy Fileman version 1.4.5 Description: The issue allows Directory Traversal in certain PHP files, specifically copydir.php, copyfile.php, and fileslist.php. Recommendations: For Roxy Fileman version 1.4.5, consider restricting access to the vulnerable PHP files copydir.php, copyfile.php, and fileslist.php until a patch is available.

Name of the Vulnerable Software and Affected Versions: Roxy Fileman version 1.4.5 Description: The issue allows for unrestricted file upload in the `upload.php` file. Recommendations: For version 1.4.5, restrict access to the `upload.php` file to prevent unauthorized file uploads until a fix is available.