Lucene search

K
wpvulndbWpvulndbWPVDB-ID:E1ECF84E-6687-4C39-8721-21E86A966DBB
HistoryMay 16, 2024 - 12:00 a.m.

Shared Files < 1.7.20 - Missing Authorization

2024-05-1600:00:00
wpscan.com
wordpress
file sharing
vulnerability
unauthorized access

7 High

AI Score

Confidence

Low

0 Low

EPSS

Percentile

0.0%

Description The Shared Files – Advanced File Sharing & Download Manager with Frontend Uploads & Lead Generation plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 1.7.19. This makes it possible for unauthenticated attackers to perform an unauthorized action.

CPENameOperatorVersion
eq1.7.20

7 High

AI Score

Confidence

Low

0 Low

EPSS

Percentile

0.0%

Related for WPVDB-ID:E1ECF84E-6687-4C39-8721-21E86A966DBB