Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Associated Vulnerability
Clear Filters
Found 538 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-0807 CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts <= 4.2 - Cross-Site Request Forgery to Settings Update ashikcseCITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts Medium 4.3 2025-03-22 06:41:10 Deep Dive
CVE-2025-2539 File Away <= 3.9.9.0.1 - Missing Authorization to Unauthenticated Arbitrary File Read thomstarkFile Away High 7.5 2025-03-20 11:11:27 Deep Dive
CVE-2025-2512 File Away <= 3.9.9.0.1 - Missing Authorization to Unauthenticated File Upload via upload Function thomstarkFile Away Critical 9.8 2025-03-19 11:23:31 Deep Dive
CVE-2024-47109 IBM Sterling File Gateway information disclosure IBMSterling File Gateway Medium 5.3 2025-03-10 16:01:43 Deep Dive
CVE-2024-48864 File Station 5 QNAP Systems Inc.File Station 5 中危 -2025-03-07 16:12:55 Deep Dive
CVE-2024-13805 Advanced File Manager <= 5.2.14 - Authenticated (Subscriber+) Stored Cross-Site Scripting via SVG File Upload saadiqbalAdvanced File Manager – Ultimate File Manager for WordPress And Document Library Solution Medium 6.4 2025-03-07 09:21:14 Deep Dive
CVE-2024-13494 WordPress File Upload <= 4.25.2 - Cross-Site Request Forgery in wfu_file_details nickbossIptanus File Upload Medium 4.3 2025-02-25 07:30:31 Deep Dive
CVE-2024-13799 User Private Files – File Upload & Download Manager with Secure File Sharing <= 2.1.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting deepakkiteFile Sharing & Download Manager – User Private Files Medium 6.4 2025-02-19 05:22:53 Deep Dive
CVE-2024-13622 File Uploads Addon for WooCommerce <= 1.7.1 - Unauthenticated Sensitive Information Exposure Through Unprotected Directory imagisolFile Uploads Addon for WooCommerce High 7.5 2025-02-18 04:21:19 Deep Dive
CVE-2024-12267 Drag and Drop Multiple File Upload – Contact Form 7 <= 1.3.8.5 - Limited Arbitrary File Deletion glenwpcoderDrag and Drop Multiple File Upload for Contact Form 7 Medium 5.3 2025-01-31 11:11:09 Deep Dive
CVE-2024-13504 Shared Files – Frontend File Upload Form & Secure File Sharing <= 1.7.42 - Limited Unauthenticated Stored Cross-Site Scripting via File Upload anssilaitilaShared Files – Frontend File Upload Form & Secure File Sharing High 7.2 2025-01-31 05:22:35 Deep Dive
CVE-2023-52292 IBM Sterling File Gateway cross-site scripting IBMSterling File Gateway Medium 6.4 2025-01-27 16:06:51 Deep Dive
CVE-2023-47159 IBM Sterling File Gateway information disclosure IBMSterling File Gateway Medium 4.3 2025-01-27 16:04:51 Deep Dive
CVE-2024-22316 IBM Sterling File Gateway improper access control IBMSterling File Gateway Medium 4.3 2025-01-27 16:03:53 Deep Dive
CVE-2025-23867 WordPress WordPress File Search Plugin <= 1.2 - Reflected Cross Site Scripting (XSS) vulnerability markcokerWordPress File Search High 7.1 2025-01-22 14:29:23 Deep Dive
CVE-2025-23918 WordPress Smallerik File Browser plugin <= 1.1 - Arbitrary File Upload vulnerability Enrico SandoliSmallerik File Browser Critical 9.9 2025-01-22 14:29:23 Deep Dive
CVE-2024-13333 Advanced File Manager 5.2.12 - 5.2.13 - Authenticated (Subscriber+) Arbitrary File Upload saadiqbalAdvanced File Manager — Ultimate WordPress File Manager and Document Library Plugin High 7.5 2025-01-17 05:29:27 Deep Dive
CVE-2025-22773 WordPress Htaccess File Editor <= 1.0.19 - Broken Authentication vulnerability WP ChillHtaccess File Editor 中危 -2025-01-15 15:23:20 Deep Dive
CVE-2024-13311 Allow All File Extensions for file fields - Critical - Unsupported - SA-CONTRIB-2024-075 DrupalAllow All File Extensions for file fields 中危 -2025-01-09 20:28:25 Deep Dive
CVE-2024-13294 POST File - Critical - Cross Site Scripting, Arbitrary PHP code execution - SA-CONTRIB-2024-060 DrupalPOST File 中危 -2025-01-09 20:17:48 Deep Dive