7 matches found
VulnCheck KEV: CVE-2025-2539
The File Away plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ajax function in all versions up to, and including, 3.9.9.0.1. This makes it possible for unauthenticated attackers, leveraging the use of a reversible weak algorithm, to read...
Exploit for Use of a Broken or Risky Cryptographic Algorithm in File_Away_Project File_Away
POC - CVE-2025-2539 File Away = 3.9.9.0.1 !Mediumhttp...
Exploit for Use of a Broken or Risky Cryptographic Algorithm in File_Away_Project File_Away
CVE-2025-2539 PoC Unauthenticated Arbitrary File Read exploit...
Exploit for Use of a Broken or Risky Cryptographic Algorithm in File_Away_Project File_Away
POC - CVE-2025-2539 File Away = 3.9.9.0.1 - Missing Author...
CVE-2025-2539
creationtimestamp| type| source ---|---|--- 2025-03-20 15:03:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lksxstf3ne2w 2025-03-20 15:43:39+00:00| seen| https://t.me/cvedetector/20731 2025-03-25 07:01:59+00:00| confirmed|...
CVE-2025-2539 File Away <= 3.9.9.0.1 - Missing Authorization to Unauthenticated Arbitrary File Read
The File Away plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ajax function in all versions up to, and including, 3.9.9.0.1. This makes it possible for unauthenticated attackers, leveraging the use of a reversible weak algorithm, to read...
CVE-2025-2539 File Away <= 3.9.9.0.1 - Missing Authorization to Unauthenticated Arbitrary File Read
The File Away plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ajax function in all versions up to, and including, 3.9.9.0.1. This makes it possible for unauthenticated attackers, leveraging the use of a reversible weak algorithm, to read...