Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 29 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-2312 Media Library Folders <= 8.3.6 - Insecure Direct Object Reference to Authenticated (Author+) Arbitrary Attachment Deletion and Rename maxfoundryMedia Library Folders Medium 4.3 2026-02-14 11:24:29 Deep Dive
CVE-2025-12640 Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager <= 3.1.5 - Missing Authorization to Authenticated (Author+) Media Replacement premioFolders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager Medium 4.3 2026-01-08 02:21:17 Deep Dive
CVE-2025-28949 WordPress Mediabay - WordPress Media Library Folders <= 1.4 - SQL Injection Vulnerability CodedraftMediabay - WordPress Media Library Folders High 8.5 2025-12-31 20:00:22 Deep Dive
CVE-2025-12900 FileBird – WordPress Media Library Folders & File Manager <= 6.5.1 - Missing Authorization to Authenticated (Author+) Global Folders Tampering ninjateamFileBird – WordPress Media Library Folders & File Manager Medium 4.3 2025-12-15 14:25:11 Deep Dive
CVE-2025-12971 Folders <= 3.1.5 - Incorrect Authorization to Authenticated (Contributor+) Folder Content Manipulation premioFolders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager Medium 4.3 2025-11-27 12:31:01 Deep Dive
CVE-2025-11510 FileBird <= 6.4.9 - Improper Authorization to Authenticated (Author+) Settings Reset ninjateamFileBird – WordPress Media Library Folders & File Manager Medium 4.3 2025-10-18 06:42:47 Deep Dive
CVE-2025-6986 FileBird – WordPress Media Library Folders & File Manager <= 6.4.8 - Authenticated (Author+) SQL Injection ninjateamFileBird – WordPress Media Library Folders & File Manager Medium 6.5 2025-08-06 01:45:13 Deep Dive
CVE-2025-28948 WordPress Mediabay - WordPress Media Library Folders plugin <= 1.4 - CSRF to Reflected XSS vulnerability codedraftMediabay - WordPress Media Library Folders High 7.1 2025-06-06 12:54:35 Deep Dive
CVE-2025-0935 Media Library Folders <= 8.3.0 - Missing Authorization to Plugin Settings Change maxfoundryMedia Library Folders Medium 4.3 2025-02-15 08:25:06 Deep Dive
CVE-2024-7858 Media Library Folders <= 8.2.3 - Missing Authorization on Various Functions maxfoundryMedia Library Folders Medium 6.3 2024-08-30 09:29:50 Deep Dive
CVE-2024-7857 Media Library Folders <= 8.2.2 - Authenticated (Subscriber+) Second-Order SQL Injection maxfoundryMedia Library Folders Medium 6.5 2024-08-29 02:31:31 Deep Dive
CVE-2024-7317 Folders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager <= 3.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via SVG File Upload premioFolders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager Medium 6.4 2024-08-06 10:59:36 Deep Dive
CVE-2024-2023 Folders <= 3.0 and Folders Pro <= 3.0.2 - Directory Traversal via handle_folders_file_upload premioFolders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager Medium 4.3 2024-06-14 12:50:56 Deep Dive
CVE-2024-3868 Folders Pro <= 3.0.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting via User First Name and Last Name premioFolders – Unlimited Folders to Organize Media Library Folder, Pages, Posts, File Manager Medium 5.4 2024-05-04 02:31:35 Deep Dive
CVE-2024-2346 FileBird – WordPress Media Library Folders & File Manager <= 5.6.3 - Authenticated (Author+) Insecure Direct Object Reference ninjateamFileBird – WordPress Media Library Folders & File Manager Medium 5.4 2024-05-02 16:52:19 Deep Dive
CVE-2024-2345 FileBird – WordPress Media Library Folders & File Manager <= 5.6.3 - Authenticated (Author+) Stored Cross-Site Scripting ninjateamFileBird – WordPress Media Library Folders & File Manager Medium 6.4 2024-05-02 16:51:47 Deep Dive
CVE-2024-3615 Media Library Folders <= 8.2.0 - Reflected Cross-Site Scripting via 's' maxfoundryMedia Library Folders Medium 6.1 2024-04-19 02:34:43 Deep Dive
CVE-2024-31287 WordPress Media Library Folders plugin <= 8.1.8 - Directory Traversal vulnerability Max FoundryMedia Library Folders Medium 6.5 2024-04-10 16:07:52 Deep Dive
CVE-2024-30486 WordPress Media Library Folders plugin <= 8.1.7 - Auth. SQL Injection vulnerability Max FoundryMedia Library Folders High 8.5 2024-03-29 13:39:32 Deep Dive
CVE-2024-0691 FileBird <= 5.6.0 - Authenticated(Administrator+) Stored Cross-Site Scripting via Folder Import ninjateamFileBird – WordPress Media Library Folders & File Manager Medium 5.5 2024-02-05 21:21:43 Deep Dive