Vulnerabilities and security researches forfront-end-editor front-end-editor
Direction: ascendingJun 07, 2024
Front-end Editor # c6189a35be8b82352b115f57cd1dd36380a98e67
- CVE, Research URL
- Home page URL
- Application
- Date
- Jul 07, 2012
- Research Description
- Front-end Editor [front-end-editor] < 2.3 WordPress Front End Editor Plugin <= 2.2 - Arbitrary File Upload Because of this vulnerability, an attacker can upload arbitrary files to the upload folder. Update this plugin.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable
Jul 21, 2025
Front-end Editor # CVE-2012-10019
- CVE, Research URL
- Home page URL
- Application
- Date
- Jul 19, 2025
- Research Description
- The Front End Editor plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation via the upload.php file in versions before 2.3. This makes it possible for unauthenticated attackers to upload arbitrary files on the affected sites server which may make remote code execution possible.
- Affected versions
-
Min -, max -.
- Status
-
vulnerable