Vulnerabilities and Security Researches

Frontend File Manager Plugin, CVE-2022-3126

CVE, Research URL: CVE-2022-3126
Home page URL: Security reports for Frontend File Manager Plugin
Application: Frontend File Manager Plugin
Published on: Oct 17, 2022
Research Description: The Frontend File Manager Plugin WordPress plugin before 21.4 does not have CSRF check when uploading files, which could allow attackers to make logged in users upload files on their behalf
Affected versions: Min -, max 3.8.
Status: vulnerable