Skip to main content

Frontend File Manager

3 CVEs product

Monthly

CVE-2024-25903 MEDIUM This Month

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in N-Media Frontend File Manager.7. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Frontend File Manager
NVD
CVSS 3.1
5.3
EPSS
0.3%
CVE-2022-3125 HIGH POC This Week

The Frontend File Manager Plugin WordPress plugin before 21.3 allows any authenticated users, such as subscriber, to rename a file to an arbitrary extension, like PHP, which could allow them to. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress File Upload Frontend File Manager
NVD WPScan
CVSS 3.1
8.8
EPSS
1.1%
CVE-2022-3124 MEDIUM POC This Month

The Frontend File Manager Plugin WordPress plugin before 21.3 allows any unauthenticated user to rename uploaded files from users. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass WordPress Frontend File Manager
NVD WPScan
CVSS 3.1
5.3
EPSS
6.2%
EPSS 0% CVSS 5.3
MEDIUM This Month

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in N-Media Frontend File Manager.7. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Frontend File Manager
NVD
EPSS 1% CVSS 8.8
HIGH POC This Week

The Frontend File Manager Plugin WordPress plugin before 21.3 allows any authenticated users, such as subscriber, to rename a file to an arbitrary extension, like PHP, which could allow them to. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress File Upload Frontend File Manager
NVD WPScan
EPSS 6% CVSS 5.3
MEDIUM POC This Month

The Frontend File Manager Plugin WordPress plugin before 21.3 allows any unauthenticated user to rename uploaded files from users. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass WordPress Frontend File Manager
NVD WPScan

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy