cleantalk
Vulnerabilities and Security Researches

File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager, CVE-2024-8743

CVE, Research URL

CVE-2024-8743

Home page URL

Security reports for File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager

Application

File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager

Published on
Oct 05, 2024
Research Description
The Bit File Manager – 100% Free & Open Source File Manager and Code Editor for WordPress plugin for WordPress is vulnerable to Limited JavaScript File Upload in all versions up to, and including, 6.5.7. This is due to a lack of proper checks on allowed file types. This makes it possible for authenticated attackers, with Subscriber-level access and above, and granted permissions by an administrator, to upload .css and .js files, which could lead to Stored Cross-Site Scripting.
Affected versions
max 6.5.8.
Status
vulnerable
Previous vulnerability researches
File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager (CVE-2024-8743) , Oct 06, 2024
File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager (CVE-2024-7770) , Sep 11, 2024
File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager (CVE-2025-1725) , Jun 03, 2025
File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager (CVE-2024-7627) , Sep 05, 2024
File Manager – 100% Free & Open Source File Manager Plugin for WordPress | Bit File Manager (CVE-2023-5907) , Jun 07, 2024
New vulnerability
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX – Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System – Booking Calendar (CVE-2025-68515) , Mar 31, 2026
UPI QR Code Payment Gateway for WooCommerce (CVE-2025-67969) , Mar 31, 2026