CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-3124 – Frontend File Manager < 21.3 - Unauthenticated File Renaming
https://notcve.org/view.php?id=CVE-2022-3124
The Frontend File Manager Plugin WordPress plugin before 21.3 allows any unauthenticated user to rename uploaded files from users. Furthermore, due to the lack of validation in the destination filename, this could allow allow them to change the content of arbitrary files on the web server El plugin Frontend File Manager de WordPress versiones anteriores a 21.3, permite a cualquier usuario no autenticado renombrar los archivos descargados por los usuarios. Además, debido a una falta de comprobación en el nombre de archivo de destino, esto podría permitirles cambiar el contenido de archivos arbitrarios en el servidor web The Frontend File Manager plugin for WordPress is vulnerable to authorization bypass due to a missing capability check and lacking authentication in versions up to, and including, 9.8. This makes it possible for unauthenticated attackers to rename uploaded files on the site. • https://wpscan.com/vulnerability/00f76765-95af-4dbc-8c37-f1b15a0e8608 • CWE-862: Missing Authorization •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-3125 – Frontend File Manager < 21.3 - Subscriber+ Arbitrary File Upload
https://notcve.org/view.php?id=CVE-2022-3125
The Frontend File Manager Plugin WordPress plugin before 21.3 allows any authenticated users, such as subscriber, to rename a file to an arbitrary extension, like PHP, which could allow them to basically be able to upload arbitrary files on the server and achieve RCE El plugin Frontend File Manager Plugin de WordPress versiones anteriores a 21.3, permite a cualquier usuario autenticado, como el suscriptor, renombrar un archivo a una extensión arbitraria, como PHP, lo que podría permitirles básicamente ser capaces de descargar archivos arbitrarios en el servidor y lograr un RCE The Frontend File Manager plugin for WordPress is vulnerable to arbitrary file uploads in versions up to, and including, 21.2. The vulnerability makes it possible for authenticated attackers, with subscriber-level permissions and above, to upload arbitrary files on the affected sites server and change their file extensions which may make remote code execution possible. • https://wpscan.com/vulnerability/d3d9dc9a-226b-4f76-995e-e2af1dd6b17e • CWE-434: Unrestricted Upload of File with Dangerous Type •