3139 matches found
CVE-2023-40204 WordPress Folders Plugin <= 2.9.2 is vulnerable to Arbitrary File Upload
Unrestricted Upload of File with Dangerous Type vulnerability in Premio Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager.This issue affects Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager: from n/a through 2.9.2...
CVE-2023-40204
CVE-2023-40204 (WordPress Folders plugin) : Unrestricted Upload of File with Dangerous Type in Premio Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager. Affected versions: plugin 2.9.2, specifically 2.9.3 or later, as cited by Patchstack. Additional context...
CVE-2022-47599
Deserialization of Untrusted Data vulnerability in File Manager by Bit Form Team File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager.This issue affects File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager: from n/a...
CVE-2022-47599
Deserialization of Untrusted Data vulnerability in File Manager by Bit Form Team File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager.This issue affects File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager: from n/a...
Deserialization of untrusted data
Deserialization of Untrusted Data vulnerability in File Manager by Bit Form Team File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager.This issue affects File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager: from n/a...
CVE-2022-47599
CVE-2022-47599 affects the Bit File Manager WordPress plugin (
CVE-2022-47599 WordPress File Manager Plugin <= 5.2.7 is vulnerable to PHP Object Injection
Deserialization of Untrusted Data vulnerability in File Manager by Bit Form Team File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager.This issue affects File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager: from n/a...
CVE-2022-47599 WordPress File Manager Plugin <= 5.2.7 is vulnerable to PHP Object Injection
Deserialization of Untrusted Data vulnerability in File Manager by Bit Form Team File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager.This issue affects File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager: from n/a...
PT-2023-15422 · WordPress · File Manager
Name of the Vulnerable Software and Affected Versions: File Manager – 100% Free & Open Source File Manager Plugin for WordPress versions n/a through 5.2.7 Description: The issue is related to Deserialization of Untrusted Data, which affects the File Manager plugin for WordPress. Recommendations:...
WordPress Bit File Manager Plugin < 6.3 is vulnerable to Path Traversal
Software Bit File Manager Type Plugin Vulnerable versions 6.3 Fixed in 6.3 OWASP Top 10 A5: Security Misconfiguration Classification Path Traversal CVE CVE-2023-5907 Patch priority Low CVSS severity Low 5.5 Developer Claim ownership PSID f6d18601e62a Credits Dmitrii Ignatyev Required privilege...
CVE-2023-6907 codelyfe Stupid Simple CMS Deletion Interface delete.php improper authentication
A vulnerability has been found in codelyfe Stupid Simple CMS up to 1.2.4 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /file-manager/delete.php of the component Deletion Interface. The manipulation of the argument file leads to improper...
CVE-2023-6907
The CVE-2023-6907 entry concerns codelyfe Stupid Simple CMS (versions up to 1.2.4). The vulnerability affects the Deletion Interface’s file-manager delete.php, where manipulation of the file parameter leads to improper authentication. Public exploit details exist, indicating potential exploitatio...
PT-2023-32815 · Codelyfe · Codelyfe Stupid Simple Cms
Name of the Vulnerable Software and Affected Versions: codelyfe Stupid Simple CMS versions up to 1.2.4 Description: A critical issue has been found in the Deletion Interface component, specifically in the /file-manager/delete.php file. The manipulation of the file argument leads to improper...
KodExplorer Code Issue Vulnerability
KodExplorer is a web file manager by the individual developer warlee. A code issue vulnerability exists in KodExplorer version 4.51.03, which stems from a manipulation of parameter paths that can lead to server-side request forgery...
KodExplorer Code Issue Vulnerability
KodExplorer is a web file manager by the individual developer warlee. A code issue vulnerability exists in KodExplorer version 4.51.03, which stems from a manipulation that can lead to server-side request forgery...
KodExplorer Code Injection Vulnerability
KodExplorer is a web file manager by the individual developer warlee. A code injection vulnerability exists in KodExplorer version 4.51.03, which stems from a manipulation that could lead to code injection...
CVE-2023-5907
The File Manager WordPress plugin before 6.3 does not restrict the file managers root directory, allowing an administrator to set a root outside of the WordPress root directory, giving access to system files and directories even in a multisite setup, where site administrators should not be allowe...
CVE-2023-5907
The File Manager WordPress plugin before 6.3 does not restrict the file managers root directory, allowing an administrator to set a root outside of the WordPress root directory, giving access to system files and directories even in a multisite setup, where site administrators should not be allowe...
Design/Logic Flaw
The File Manager WordPress plugin before 6.3 does not restrict the file managers root directory, allowing an administrator to set a root outside of the WordPress root directory, giving access to system files and directories even in a multisite setup, where site administrators should not be allowe...
CVE-2023-5907 File Manager < 6.3 - Admin+ Arbitrary OS File/Folder Access + Path Traversal
The File Manager WordPress plugin before 6.3 does not restrict the file managers root directory, allowing an administrator to set a root outside of the WordPress root directory, giving access to system files and directories even in a multisite setup, where site administrators should not be allowe...