Mfolio
1 CVEs
product
Monthly
The mFolio Lite plugin for WordPress is vulnerable to file uploads due to a missing capability check in all versions up to, and including, 1.2.1. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
File Upload
WordPress
RCE
Mfolio
NVD
CVSS 3.1
9.9
EPSS
7.8%
EPSS 8%
CVSS 9.9
CRITICAL
Act Now
The mFolio Lite plugin for WordPress is vulnerable to file uploads due to a missing capability check in all versions up to, and including, 1.2.1. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
File Upload
WordPress
RCE
+1
NVD