Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:53 p.m.6 views

CVE-2022-3125

The Frontend File Manager Plugin WordPress plugin before 21.3 allows any authenticated users, such as subscriber, to rename a file to an arbitrary extension, like PHP, which could allow them to basically be able to upload arbitrary files on the server and achieve RCE...

8.8CVSS6.6AI score0.01113EPSS
Exploits2References1
NVD
NVD
added 2022/10/03 2:15 p.m.22 views

CVE-2022-3125

The Frontend File Manager Plugin WordPress plugin before 21.3 allows any authenticated users, such as subscriber, to rename a file to an arbitrary extension, like PHP, which could allow them to basically be able to upload arbitrary files on the server and achieve RCE...

8.8CVSS0.01113EPSS
Exploits2References1
CVE
CVE
added 2022/10/03 1:45 p.m.72 views

CVE-2022-3125

The CVE-2022-3125 entry concerns the WordPress Frontend File Manager plugin (versions prior to 21.3). The vulnerability arises from allowing any authenticated user (e.g., a subscriber) to rename an uploaded file to an arbitrary extension (such as PHP), which could enable uploading of arbitrary fi...

8.8CVSS8.6AI score0.01113EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/10/03 1:45 p.m.23 views

CVE-2022-3125 Frontend File Manager < 21.3 - Subscriber+ Arbitrary File Upload

The Frontend File Manager Plugin WordPress plugin before 21.3 allows any authenticated users, such as subscriber, to rename a file to an arbitrary extension, like PHP, which could allow them to basically be able to upload arbitrary files on the server and achieve RCE...

8.8AI score0.01113EPSS
Exploits2References1
Rows per page
Query Builder