Vulnerabilities > Najeebmedia

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-04	CVE-2023-5105	Path Traversal vulnerability in Najeebmedia Frontend File Manager Plugin The Frontend File Manager Plugin WordPress plugin before 22.6 has a vulnerability that allows an Editor+ user to bypass the file download logic and download files such as `wp-config.php` network low complexity najeebmedia CWE-22	6.5
2023-06-07	CVE-2021-4344	Unspecified vulnerability in Najeebmedia Frontend File Manager Plugin The Frontend File Manager plugin for WordPress is vulnerable to Privilege Escalation in versions up to, and including, 18.2. network low complexity najeebmedia	5.4
2023-06-07	CVE-2021-4350	Missing Authorization vulnerability in Najeebmedia Frontend File Manager Plugin The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated HTML Injection in versions up to, and including, 18.2. network low complexity najeebmedia CWE-862	5.3
2023-06-07	CVE-2021-4351	Missing Authorization vulnerability in Najeebmedia Frontend File Manager Plugin The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Post Meta Change in versions up to, and including, 18.2. network low complexity najeebmedia CWE-862	5.3
2023-06-07	CVE-2021-4356	Missing Authorization vulnerability in Najeebmedia Frontend File Manager Plugin The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Download in versions up to, and including, 18.2. network low complexity najeebmedia CWE-862 critical	9.8
2023-06-07	CVE-2021-4359	Missing Authorization vulnerability in Najeebmedia Frontend File Manager Plugin The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Arbitrary Post Deletion in versions up to, and including, 18.2. network low complexity najeebmedia CWE-862	5.3
2023-06-07	CVE-2021-4365	Cross-site Scripting vulnerability in Najeebmedia Frontend File Manager Plugin The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Stored Cross-Site Scripting in versions up to, and including, 18.2. network low complexity najeebmedia CWE-79	6.1
2023-06-07	CVE-2021-4368	Missing Authorization vulnerability in Najeebmedia Frontend File Manager Plugin The Frontend File Manager plugin for WordPress is vulnerable to Authenticated Settings Change in versions up to, and including, 18.2. network low complexity najeebmedia CWE-862	8.8
2023-06-07	CVE-2021-4369	Missing Authorization vulnerability in Najeebmedia Frontend File Manager Plugin The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Content Injection in versions up to, and including, 18.2. network low complexity najeebmedia CWE-862	5.3
2023-03-06	CVE-2022-4328	Unspecified vulnerability in Najeebmedia Woocommerce Checkout Field Manager The WooCommerce Checkout Field Manager WordPress plugin before 18.0 does not validate files to be uploaded, which could allow unauthenticated attackers to upload arbitrary files such as PHP on the server network low complexity najeebmedia critical	9.8

Vulnerabilities > Najeebmedia {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Najeebmedia"}]}

Vulnerabilities > Najeebmedia