cleantalk
Vulnerabilities and Security Researches

WordPress File Sharing Plugin, be7e4dd904232f8bbad7f0fdb3ba196d889265d6

CVE, Research URL

be7e4dd904232f8bbad7f0fdb3ba196d889265d6

Home page URL

Security reports for WordPress File Sharing Plugin

Application

WordPress File Sharing Plugin

Published on
Aug 06, 2022
Research Description
Secure Client Portal and Private File Sharing Plugin &#8211; User Private Files [user-private-files] < 1.1.1 Frontend File Manager & Sharing – User Private Files <= 1.1.0 - Sensitive Information Disclosure The Frontend File Manager & Sharing – User Private Files plugin for WordPress is vulnerable to Sensitive Data Exposure in versions up to, and including, 1.1.0 via the dpk_upvf_uemail_search() function. This can allow unauthenticated attackers to extract sensitive data including user emails.
Affected versions
max 1.1.1.
Status
vulnerable
Previous vulnerability researches
WordPress File Sharing Plugin (be7e4dd904232f8bbad7f0fdb3ba196d889265d6) , Jun 16, 2026
WordPress File Sharing Plugin (5ec10b852355c81b4d0f20f86f2b248af6bf4977) , Jun 16, 2026
WordPress File Sharing Plugin (CVE-2024-7848) , Aug 23, 2024
WordPress File Sharing Plugin (CVE-2026-10093) , Jun 18, 2026
WordPress File Sharing Plugin (CVE-2024-13799) , Feb 20, 2025
New vulnerability
Advanced 301 and 302 Redirect (CVE-2026-49067) , Jun 18, 2026
Abandoned Contact Form 7 (CVE-2026-9187) , Jun 18, 2026
ABC Crypto Checkout (CVE-2026-52695) , Jun 18, 2026
WordPress File Sharing Plugin (CVE-2026-10093) , Jun 18, 2026
Gallery Plugin for WordPress &#8211; Envira Photo Gallery (CVE-2026-54190) , Jun 18, 2026