Security for everyone

CVE-2018-20526 Scanner

Detects 'Unrestricted File Upload' vulnerability in Roxy Fileman affects v. 1.4.5.


Short Info




Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Domain, Ipv4

Parent Category

CVE-2018-20526 Scanner Detail

Roxy Fileman 1.4.5 is a file management tool that is used to upload and manage files on websites. It is often utilized by web developers and website owners who need an efficient and easy-to-use tool to upload, organize, and delete files on their sites. Roxy Fileman can be accessed through the web browser, and it offers a user-friendly interface that simplifies tasks such as file browsing, uploading, and editing.

CVE-2018-20526 is a critical vulnerability that has been discovered in Roxy Fileman 1.4.5. The vulnerability arises from the fact that the product does not validate the file type while uploading a file, leading to the potential for attackers to upload malicious files to the website. Attackers can exploit this vulnerability to upload and run arbitrary code on the vulnerable server, which can result in the complete compromise of the system.

When this vulnerability is exploited, attackers can take control of the vulnerable server remotely, access sensitive user information, and even steal data or encryption keys. Additionally, attackers can use the compromised server to launch further attacks against other systems. This vulnerability is a severe threat, and it is vital to take proactive measures to mitigate the risk of an attack.

Thanks to the pro features of the platform, website owners and developers can easily and quickly learn about vulnerabilities in their digital assets. This platform provides a comprehensive suite of tools and services, including vulnerability scans, penetration testing, and threat intelligence feeds, to help safeguard against cyber threats. By utilizing these features, website owners and developers can ensure that their digital assets are secure and protected against potential cyber attacks.



cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture