tinyfilemanager icon indicating copy to clipboard operation
tinyfilemanager copied to clipboard

Published 20 hours ago verified publisher icon prasathmani

tinyfilemanager.php contain malware

Open annash-zm opened this issue 4 years ago • 5 comments

how to fix tinyfilemanager.php file contain malware so i can't upload file or the file is deleted?

annash-zm avatar Jun 22 '21 05:06 annash-zm

There's references to this here and there and it's a vulnerability for code injection, not an issue of malware contained within Tiny File Manager.

As best I can tell is that the vulnerability has been fixed as well.

Whatever scan/check is being referenced elsewhere here is ambiguous otherwise.

Can this be confirmed and this issue marked appropriately?

17500mph avatar Jul 15 '21 14:07 17500mph

The ambiguous reference I'm citing is #578 ('SiteLock' - appears to be some for pay service, a not openly accessible FUD inducing bait)

17500mph avatar Jul 15 '21 14:07 17500mph

I used https://www.virustotal.com/ to check the file and it also showing malware detection: VUL.Webshell

saeed74 avatar Aug 21 '21 12:08 saeed74

cpanel wont let me upload the file because it says it has malware Bkav Pro - VUL.Webshell

precamp-io avatar Jan 24 '22 18:01 precamp-io

Solution for cPanel:

Open tinyfilemanager.php in a text editor And

Replace All: fm_redirect(FM_SELF_URL . '?p=' . urlencode(FM_PATH)); With: $FM_PATH=FM_PATH; fm_redirect(FM_SELF_URL . '?p=' . urlencode($FM_PATH));

FransW5 avatar Jul 21 '22 06:07 FransW5