CVEDB API

Vulnerabilities

Vulnerable Software

Soliton: >> Filezen >> 4.2.1 Security Vulnerabilities

CVE-2026-25108

Known exploited

FileZen contains an OS command injection vulnerability. When FileZen Antivirus Check Option is enabled, a logged-in user may send a specially crafted HTTP request to execute an arbitrary OS command.

CVSS Score

8.8

EPSS Score

0.186

Published

2026-02-13

CVE-2021-20655

FileZen (V3.0.0 to V4.2.7 and V5.0.0 to V5.0.2) allows a remote attacker with administrator rights to execute arbitrary OS commands via unspecified vectors.

CVSS Score

7.2

EPSS Score

0.034

Published

2021-02-17

CVE-2020-5639

Directory traversal vulnerability in FileZen versions from V3.0.0 to V4.2.2 allows remote attackers to upload an arbitrary file in a specific directory via unspecified vectors. As a result, an arbitrary OS command may be executed.

CVSS Score

9.8

EPSS Score

0.092

Published

2020-12-14

CVE-2018-0693

Directory traversal vulnerability in FileZen V3.0.0 to V4.2.1 allows remote attackers to upload an arbitrary file in the specific directory in FileZen via unspecified vectors.

CVSS Score

7.5

EPSS Score

0.005

Published

2018-11-15

CVE-2018-0694

FileZen V3.0.0 to V4.2.1 allows remote attackers to execute arbitrary OS commands via unspecified vectors.

CVSS Score

9.8

EPSS Score

0.029

Published

2018-11-15

Page 1

Vulnerabilities

Vulnerable Software

Soliton: >> Filezen >> 4.2.1 Security Vulnerabilities

Products

Pricing

Contact Us