The Frontend File Manager plugin for WordPress is vulnerable to Authenticated Settings Change in versions up to, and including, 18.2. This is due to lacking capability checks and a security nonce, all on the wpfm_save_settings AJAX action. This makes it possible for subscriber-level attackers to edit the plugin settings, such as the allowed upload file types. This can lead to remote code execution through other vulnerabilities.
Metrics
Affected Vendors & Products
References
History
Mon, 23 Dec 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Wordfence
Published: 2023-06-07T01:51:38.452Z
Updated: 2024-12-23T16:21:10.105Z
Reserved: 2023-06-06T13:09:06.280Z
Link: CVE-2021-4368
Vulnrichment
Updated: 2024-08-03T17:23:10.729Z
NVD
Status : Modified
Published: 2023-06-07T02:15:14.783
Modified: 2024-11-21T06:37:31.353
Link: CVE-2021-4368
Redhat
No data.