Vulnerability Details CVE-2020-35235
vendor/elfinder/php/connector.minimal.php in the secure-file-manager plugin through 2.5 for WordPress loads elFinder code without proper access control. Thus, any authenticated user can run the elFinder upload command to achieve remote code execution. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Exploit prediction scoring system (EPSS) score
EPSS Score 0.092
EPSS Ranking 92.4%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
- https://blog.nintechnet.com/authenticated-rce-vulnerability-in-wordpress-secure-file-manager-plugin-unpatched/
- https://wordpress.org/plugins/secure-file-manager/#developers
- https://blog.nintechnet.com/authenticated-rce-vulnerability-in-wordpress-secure-file-manager-plugin-unpatched/
- https://wordpress.org/plugins/secure-file-manager/#developers
Products affected by CVE-2020-35235
-
cpe:2.3:a:themexa:secure_file_manager:-
-
cpe:2.3:a:themexa:secure_file_manager:2.5