Advanced File Manager Security Vulnerabilities and Issues — Advanced File Manager CVE List

Lucene search

AdvancedfilemanagerAdvanced File Manager

2 matches found

CVE•added 2024/09/26 11:15 a.m.•44 views

CVE-2024-8725

Multiple plugins and/or themes for WordPress are vulnerable to Limited File Upload in various versions. This is due to a lack of proper checks to ensure lower-privileged roles cannot upload .css and .js files to arbitrary directories. This makes it possible for authenticated attackers, with Subscri...

6.8CVSS6AI score0.00111EPSS

CVE•added 2025/03/07 10:15 a.m.•37 views

CVE-2024-13805

The Advanced File Manager — Ultimate WordPress File Manager and Document Library Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 5.2.14 due to insufficient input sanitization and output escaping. This makes it possi...

6.4CVSS5.9AI score0.0002EPSS