Vulnerabilities and security researches foruser-private-files user-private-files

Jun 06, 2024

CVE, Research URL: CVE-2022-2356
Home page URL: Security reports for WordPress File Sharing Plugin
Application: WordPress File Sharing Plugin
Date: Aug 08, 2022
Research Description: The Frontend File Manager & Sharing WordPress plugin before 1.1.3 does not filter file extensions when letting users upload files on the server, which may lead to malicious code being uploaded.
Affected versions: max 1.1.3.
Status: vulnerable

CVE, Research URL: CVE-2023-4836
Home page URL: Security reports for WordPress File Sharing Plugin
Application: WordPress File Sharing Plugin
Date: Oct 31, 2023
Research Description: The WordPress File Sharing Plugin WordPress plugin before 2.0.5 does not check authorization before displaying files and folders, allowing users to gain access to those filed by manipulating IDs which can easily be brute forced
Affected versions: max 2.0.5.
Status: vulnerable

CVE, Research URL: CVE-2023-4636
Home page URL: Security reports for WordPress File Sharing Plugin
Application: WordPress File Sharing Plugin
Date: Sep 05, 2023
Research Description: The WordPress File Sharing Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 2.0.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.
Affected versions: max 2.0.4.
Status: vulnerable

Aug 23, 2024

CVE, Research URL: CVE-2024-7848
Home page URL: Security reports for WordPress File Sharing Plugin
Application: WordPress File Sharing Plugin
Date: Aug 22, 2024
Research Description: The User Private Files – WordPress File Sharing Plugin plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.1.0 via the 'dpk_upvf_update_doc' due to missing validation on the 'docid' user controlled key. This makes it possible for authenticated attackers, with subscriber-level access and above, to gain access to other user's private files.
Affected versions: max 2.1.1.
Status: vulnerable

Feb 20, 2025

CVE, Research URL: CVE-2024-13799
Home page URL: Security reports for WordPress File Sharing Plugin
Application: WordPress File Sharing Plugin
Date: Feb 19, 2025
Research Description: The User Private Files – File Upload & Download Manager with Secure File Sharing plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘new-fldr-name’ parameter in all versions up to, and including, 2.1.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Subscriber-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions: max 2.1.4.
Status: vulnerable

Jun 16, 2026

CVE, Research URL: be7e4dd904232f8bbad7f0fdb3ba196d889265d6
Home page URL: Security reports for WordPress File Sharing Plugin
Application: WordPress File Sharing Plugin
Date: Aug 06, 2022
Research Description: Secure Client Portal and Private File Sharing Plugin – User Private Files [user-private-files] < 1.1.1 Frontend File Manager & Sharing – User Private Files <= 1.1.0 - Sensitive Information Disclosure The Frontend File Manager & Sharing – User Private Files plugin for WordPress is vulnerable to Sensitive Data Exposure in versions up to, and including, 1.1.0 via the dpk_upvf_uemail_search() function. This can allow unauthenticated attackers to extract sensitive data including user emails.
Affected versions: max 1.1.1.
Status: vulnerable

CVE, Research URL: 5ec10b852355c81b4d0f20f86f2b248af6bf4977
Home page URL: Security reports for WordPress File Sharing Plugin
Application: WordPress File Sharing Plugin
Date: Aug 06, 2022
Research Description: Secure Client Portal and Private File Sharing Plugin – User Private Files [user-private-files] < 1.1.2 Frontend File Manager & Sharing – User Private Files <= 1.1.1 - Missing Authorization The Frontend File Manager & Sharing – User Private Files plugin for WordPress is vulnerable to authorization bypass in versions up to, and including, 1.1.1. This is due to missing capability checks and nonce validation on several functions such as dpk_upvf_rmv_file(), dpk_upvf_rmv_access(), and dpk_upvf_update_doc(). This makes it possible for unauthenticated attackers to modify several settings and modify files (via deletion and settings updates).
Affected versions: max 1.1.2.
Status: vulnerable

Jun 18, 2026

CVE, Research URL: CVE-2026-10093
Home page URL: Security reports for WordPress File Sharing Plugin
Application: WordPress File Sharing Plugin
Date: Jun 16, 2026
Research Description: The File Sharing & Download Manager – User Private Files plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'fldr_ttl' parameter in all versions up to, and including, 2.1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with subscriber-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions: max 2.1.7.
Status: vulnerable