Lucene search
WPScanCVELIST:CVE-2022-2356HistoryAug 08, 2022 - 1:46 p.m.
CVE-2022-2356 User Private Files < 1.1.3 - Subscriber+ Arbitrary File Upload
2022-08-0813:46:51
CWE-434
WPScan
www.cve.org
4
cve-2022-2356
user private files
file upload
security vulnerability
wordpress
The Frontend File Manager & Sharing WordPress plugin before 1.1.3 does not filter file extensions when letting users upload files on the server, which may lead to malicious code being uploaded.
CNA Affected
[
{
"product": "Frontend File Manager & Sharing – User Private Files",
"vendor": "Unknown",
"versions": [
{
"lessThan": "1.1.3",
"status": "affected",
"version": "1.1.3",
"versionType": "custom"
}
]
}
]Related
patchstack
patchstack
wpvulndb
wpvulndb
User Private Files < 1.1.3 - Subscriber+ Arbitrary File Upload
2022-07-12 00:00:00
nvd
nvd
CVE-2022-2356
2022-08-08 14:15:08
cve
cve
CVE-2022-2356
2022-08-08 14:15:08
wpexploit
wpexploit
User Private Files < 1.1.3 - Subscriber+ Arbitrary File Upload
2022-07-12 00:00:00
prion
prion
Code injection
2022-08-08 14:15:00