Lucene search
K

4 matches found

nvd
nvd
added 2025/08/13 4:16 a.m.9 views

CVE-2025-0818

Several WordPress plugins using elFinder versions 2.1.64 and prior are vulnerable to Directory Traversal in various versions. This makes it possible for unauthenticated attackers to delete arbitrary files. Successful exploitation of this vulnerability requires a site owner to explicitly make an...

6.5CVSS0.00697EPSS
Exploits0References8
vulnrichment
vulnrichment
added 2025/08/13 3:42 a.m.2 views

CVE-2025-0818 Multiple elFinder Plugins <= (Various Versions) - Directory Traversal to Arbitrary File Deletion

Several WordPress plugins using elFinder versions 2.1.64 and prior are vulnerable to Directory Traversal in various versions. This makes it possible for unauthenticated attackers to delete arbitrary files. Successful exploitation of this vulnerability requires a site owner to explicitly make an...

6.5CVSS7.1AI score0.00697EPSS
Exploits0References8
patchstack
patchstack
added 2025/08/12 11:15 p.m.7 views

WordPress Advanced File Manager plugin <= 5.3.6 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by tiborisaak in WordPress Plugin Advanced File Manager versions = 5.3.6...

6.5CVSS6.7AI score0.00697EPSS
Exploits0References1Affected Software1
patchstack
patchstack
added 2025/08/12 12:0 a.m.7 views

WordPress File Manager Plugin <= 8.4.2 is vulnerable to Arbitrary File Deletion

Software File Manager Type Plugin Vulnerable versions = 8.4.2 Fixed in 8.4.3 OWASP Top 10 A3: Injection Classification Arbitrary File Deletion CVE CVE-2025-0818 Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID 5d1e46fce6a0 Credits tiborisaak Required privilege...

7.2AI score0.00697EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder