Apply security patches to Tiny File Manager

Browse source

Fixed critical vulnerabilities:

-Path traversal (CVE-2021-45010) in download/delete/rename/edit operations
-Enhanced CSRF protection with token validation
-Added input validation and filename whitelisting
-Multi-layer defense for file operations

...

This commit is contained in:

Sajan Ghimire 2026-01-01 14:33:53 +05:45 • committed by GitHub

parent dd79258999

commit fe8155f0a1

No known key found for this signature in database

GPG key ID: B5690EEEBB952194

1 changed files with 96 additions and 17 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download patch file Download diff file Expand all files Collapse all files

113

tinyfilemanager.php

View file

File diff suppressed because one or more lines are too long