Mediajedi: >> User Private Files >> 1.1.2 Security Vulnerabilities
The User Private Files – WordPress File Sharing Plugin plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.1.0 via the 'dpk_upvf_update_doc' due to missing validation on the 'docid' user controlled key. This makes it possible for authenticated attackers, with subscriber-level access and above, to gain access to other user's private files.
CVSS Score
4.3
EPSS Score
0.002
Published
2024-08-22
The Frontend File Manager & Sharing WordPress plugin before 1.1.3 does not filter file extensions when letting users upload files on the server, which may lead to malicious code being uploaded.
CVSS Score
8.8
EPSS Score
0.008
Published
2022-08-08