Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

Frontend File Manager Plugin — Vulnerabilities & Security Advisories 17

All 17 CVE vulnerabilities found in Frontend File Manager Plugin, with AI-generated Chinese analysis, references, and POCs.

Vendor: Unknown

CVE IDTitleCVSSSeverityPaused
CVE-2026-0829 Frontend File Manager Plugin <= 23.5 - Unauthenticated Arbitrary Email Sending 6.5AIMediumAI2026-02-17
CVE-2026-1280 Frontend File Manager Plugin <= 23.5 - Missing Authorization to Unauthenticated Arbitrary File Sharing via 'file_id' Parameter CWE-862 7.5 High2026-01-28
CVE-2025-14804 Frontend File Manager < 23.5 - Subscriber+ Arbitrary File Deletion 6.5 -2026-01-07
CVE-2025-13382 Frontend File Manager Plugin <= 23.4 - Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary File Renaming CWE-639 4.3 Medium2025-11-25
CVE-2023-7306 Frontend File Manager <= 21.5 - Missing Authorization to Unauthenticated Arbitrary Post Deletion CWE-862 7.5 High2025-07-25
CVE-2023-5105 Frontend File Manager < 22.6 - Editor+ Arbitrary File Download 6.5AIMediumAI2023-12-04
CVE-2021-4369 Frontend File Manager <= 18.2 - Unauthenticated Content Injection CWE-862 5.8 Medium2023-06-07
CVE-2021-4368 Frontend File Manager <= 18.2 - Authenticated Settings Change leading to Arbitrary File Upload CWE-862 9.9 Critical2023-06-07
CVE-2021-4365 Frontend File Manager <= 18.2 - Unauthenticated Stored Cross-Site Scripting CWE-79 7.2 High2023-06-07
CVE-2021-4359 Frontend File Manager Plugin <= 18.2 - Unauthenticated Arbitrary Post Deletion CWE-862 6.5 Medium2023-06-07
CVE-2021-4356 Frontend File Manager <= 18.2 - Unauthenticated Arbitrary File Download CWE-862 9.0 Critical2023-06-07
CVE-2021-4351 Frontend File Manager <= 18.2 - Unauthenticated Post Meta Change CWE-862 5.8 Medium2023-06-07
CVE-2021-4350 Frontend File Manager <= 18.2 - Unauthenticated HTML Injection leading to Spam Emails CWE-862 7.2 High2023-06-07
CVE-2021-4344 Frontend File Manager <= 18.2 - Privilege Escalation CWE-285 6.4 Medium2023-06-07
CVE-2022-3126 Frontend File Manager < 21.4 - File Upload via CSRF CWE-352 6.5 -2022-10-17
CVE-2022-3125 Frontend File Manager < 21.3 - Subscriber+ Arbitrary File Upload CWE-434 8.8 -2022-10-03
CVE-2022-3124 Frontend File Manager < 21.3 - Unauthenticated File Renaming CWE-862 5.3 -2022-10-03

All 17 known CVE vulnerabilities affecting Frontend File Manager Plugin with full Chinese analysis, references, and POCs where available.