CVE-2020-5639

Name of the Vulnerable Software and Affected Versions FileZen versions 3.0.0 through 4.2.2

Description A directory traversal issue allows remote attackers to upload arbitrary files to specific directories via unspecified vectors, potentially leading to the execution of arbitrary OS commands.

Recommendations For versions 3.0.0 through 4.2.2, update to a version that contains a fix for this issue to prevent directory traversal and arbitrary file upload. As a temporary workaround, consider restricting access to sensitive directories and implementing additional security measures to prevent unauthorized file uploads.