cleantalk
Vulnerabilities and Security Researches

Frontend File Manager Plugin, CVE-2025-57921

CVE, Research URL

CVE-2025-57921

Home page URL

Security reports for Frontend File Manager Plugin

Application

Frontend File Manager Plugin

Published on
Sep 23, 2025
Research Description
Missing Authorization vulnerability in N-Media Frontend File Manager nmedia-user-file-uploader allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Frontend File Manager: from n/a through <= 23.3.
Affected versions
max 23.4.
Status
vulnerable
Previous vulnerability researches
Directory Listings WordPress plugin &#8211; uListing (CVE-2021-36875) , Jun 07, 2024
Directory Listings WordPress plugin &#8211; uListing (CVE-2021-36877) , Jun 07, 2024
Directory Listings WordPress plugin &#8211; uListing (CVE-2021-36880) , Jun 07, 2024
Directory Listings WordPress plugin &#8211; uListing (CVE-2021-36874) , Jun 07, 2024
Directory Listings WordPress plugin &#8211; uListing (CVE-2021-36876) , Jun 07, 2024
New vulnerability
Meta Tag Manager (CVE-2025-5983) , Apr 23, 2026
WP Blog and Widgets (CVE-2026-6443) , Apr 23, 2026
Shipment Tracker for Woocommerce (CVE-2026-39540) , Apr 23, 2026
Download Manager (CVE-2025-10146) , Apr 23, 2026
Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag &amp; Drop WP Form Builder (CVE-2025-9260) , Apr 23, 2026