GLPI version 0.85.5 suffers from a file upload filter bypass vulnerability that allows for remote code execution.
7debb38db365cb1f5b803b167db247052b9e37082b8722cd6b023196e2a41bf8
f-fileman version 7.0 suffers from a directory traversal vulnerability.
0c25fe94c0bfc6d0cb56eefc3e278ff709b9117fd98544ea5f6f59dcb49f50b7