Lucene search
+L

7 matches found

VulnCheck KEV
VulnCheck KEV
added 2025/10/12 12:0 a.m.8 views

VulnCheck KEV: CVE-2025-2539

The File Away plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ajax function in all versions up to, and including, 3.9.9.0.1. This makes it possible for unauthenticated attackers, leveraging the use of a reversible weak algorithm, to read...

7.5CVSS5.9AI score0.01606EPSS
In wildExploits6References2
GithubExploit
GithubExploit
added 2025/06/21 6:51 a.m.543 views

Exploit for Use of a Broken or Risky Cryptographic Algorithm in File_Away_Project File_Away

POC - CVE-2025-2539 File Away = 3.9.9.0.1 !Mediumhttp...

7.5CVSS9.3AI score0.01606EPSS
Exploits6
GithubExploit
GithubExploit
added 2025/06/04 7:27 a.m.707 views

Exploit for Use of a Broken or Risky Cryptographic Algorithm in File_Away_Project File_Away

CVE-2025-2539 PoC Unauthenticated Arbitrary File Read exploit...

7.5CVSS9.3AI score0.01606EPSS
Exploits6
GithubExploit
GithubExploit
added 2025/05/26 12:6 p.m.301 views

Exploit for Use of a Broken or Risky Cryptographic Algorithm in File_Away_Project File_Away

POC - CVE-2025-2539 File Away = 3.9.9.0.1 - Missing Author...

7.5CVSS9.2AI score0.01606EPSS
Exploits6
Circl
Circl
added 2025/03/20 3:3 p.m.18 views

CVE-2025-2539

creationtimestamp| type| source ---|---|--- 2025-03-20 15:03:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lksxstf3ne2w 2025-03-20 15:43:39+00:00| seen| https://t.me/cvedetector/20731 2025-03-25 07:01:59+00:00| confirmed|...

7.5CVSS8.3AI score0.01606EPSS
Exploits6References8
Cvelist
Cvelist
added 2025/03/20 11:11 a.m.38 views

CVE-2025-2539 File Away <= 3.9.9.0.1 - Missing Authorization to Unauthenticated Arbitrary File Read

The File Away plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ajax function in all versions up to, and including, 3.9.9.0.1. This makes it possible for unauthenticated attackers, leveraging the use of a reversible weak algorithm, to read...

7.5CVSS0.01606EPSS
Exploits6References5
Vulnrichment
Vulnrichment
added 2025/03/20 11:11 a.m.10 views

CVE-2025-2539 File Away <= 3.9.9.0.1 - Missing Authorization to Unauthenticated Arbitrary File Read

The File Away plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the ajax function in all versions up to, and including, 3.9.9.0.1. This makes it possible for unauthenticated attackers, leveraging the use of a reversible weak algorithm, to read...

7.5CVSS7.3AI score0.01606EPSS
Exploits6References4
Rows per page
Query Builder