cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forfront-end-editor front-end-editor

Direction: ascending
Jun 07, 2024

Front-end Editor # c6189a35be8b82352b115f57cd1dd36380a98e67

Application

Front-end Editor

Date
Jul 07, 2012
Research Description
Front-end Editor [front-end-editor] < 2.3 WordPress Front End Editor Plugin <= 2.2 - Arbitrary File Upload Because of this vulnerability, an attacker can upload arbitrary files to the upload folder. Update this plugin.
Affected versions
Min -, max -.
Status
vulnerable
Jul 21, 2025

Front-end Editor # CVE-2012-10019

CVE, Research URL

CVE-2012-10019

Application

Front-end Editor

Date
Jul 19, 2025
Research Description
The Front End Editor plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the upload.php file in versions before 2.3. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites server which may make remote code execution possible.
Affected versions
Min -, max -.
Status
vulnerable