Zakumini1

**Name of the Vulnerable Software and Affected Versions** Filemanager version 2.5.0 **Description** An arbitrary file upload vulnerability exists in the `/rsc/filemanager.rsc.class.php` component. Attackers can execute arbitrary code by uploading a crafted SVG file. **Recommendations** Filemanager version 2.5.0: Replace the vulnerable component `/rsc/filemanager.rsc.class.php` with a secure version.