12 matches found
EUVD-2018-17089
Malware in sbrugna...
CVE-2018-5310
In the "Media from FTP" plugin before 9.85 for WordPress, Directory Traversal exists via the searchdir parameter to the wp-admin/admin.php?page=mediafromftp-search-register URI...
CVE-2023-4019 Media from FTP < 11.17 - Author+ Arbitrary File Access
The Media from FTP WordPress plugin before 11.17 does not properly limit who can use the plugin, which may allow users with author+ privileges to move files around, like wp-config.php, which may lead to RCE in some cases...
WordPress plugin Media from FTP security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
PT-2023-27314 · WordPress · Media From Ftp
Name of the Vulnerable Software and Affected Versions: Media from FTP WordPress plugin versions prior to 11.17 Description: The issue arises from the Media from FTP WordPress plugin not properly limiting who can use the plugin. This may allow users with author+ privileges to move files around, su...
WordPress Media from FTP Plugin < 11.16 is vulnerable to Broken Access Control
Software Media from FTP Type Plugin Vulnerable versions 11.16 Fixed in 11.16 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE N/A Patch priority Low CVSS severity Low 6.3 Developer Claim ownership PSID 23159e872c33 Credits Marc-Alexandre Montpas Required privilege...
WordPress Media From FTP Plugin < 9.85 Directory Traversal Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description scriptoid"1.3.6.1.4.1.25623.1.0.112188";...
WordPress Media from FTP Directory Traversal Vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.Media from FTP plugin is used in one of the media file upload plugin. A directory traversal vulnerability exists i...
Directory traversal
In the "Media from FTP" plugin before 9.85 for WordPress, Directory Traversal exists via the searchdir parameter to the wp-admin/admin.php?page=mediafromftp-search-register URI...
CVE-2018-5310
In the "Media from FTP" plugin before 9.85 for WordPress, Directory Traversal exists via the searchdir parameter to the wp-admin/admin.php?page=mediafromftp-search-register URI...
CVE-2018-5310
In the "Media from FTP" plugin before 9.85 for WordPress, Directory Traversal exists via the searchdir parameter to the wp-admin/admin.php?page=mediafromftp-search-register URI...
CVE-2018-5310
The CVE 2018-5310 entry corresponds to a Directory Traversal vulnerability in the WordPress Media from FTP plugin, exploitable via the searchdir parameter in the wp-admin/admin.php?page=mediafromftp-search-register URI. Affected versions are prior to 9.85. Remediation: update the plugin to versio...