cleantalk
Vulnerabilities and Security Researches

FileBird – WordPress Media Library Folders & File Manager, CVE-2025-26977

CVE, Research URL

CVE-2025-26977

Home page URL

Security reports for FileBird – WordPress Media Library Folders & File Manager

Application

FileBird – WordPress Media Library Folders & File Manager

Published on
Feb 25, 2025
Research Description
Authorization Bypass Through User-Controlled Key vulnerability in Ninja Team Filebird allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Filebird: from n/a through 6.4.2.1.
Affected versions
Min -, max 6.4.6.
Status
vulnerable
Previous vulnerability researches
FileBird Document Library (CVE-2024-37504) , Jul 08, 2024
FileBird – WordPress Media Library Folders & File Manager (CVE-2024-53825) , Dec 08, 2024
FileBird – WordPress Media Library Folders & File Manager (CVE-2025-26977) , Feb 27, 2025
FileBird – WordPress Media Library Folders & File Manager (CVE-2025-6986) , Aug 07, 2025
FileBird – WordPress Media Library Folders & File Manager (CVE-2023-25966) , Jun 10, 2024
New vulnerability
Newsletters (CVE-2025-54034) , Aug 07, 2025
FileBird – WordPress Media Library Folders & File Manager (CVE-2025-6986) , Aug 07, 2025
HT Mega – Absolute Addons For Elementor (CVE-2025-54695) , Aug 07, 2025
DELUCKS SEO (CVE-2025-48165) , Aug 07, 2025
Gutenberg Blocks – PublishPress Blocks Gutenberg Editor Plugin (CVE-2025-48332) , Aug 06, 2025