CVE-2018-25105 — Missing Authorization in File Manager

CWE-862 — Missing Authorization4 documents4 sources

Severity

9.8CRITICALNVD

EPSS

2.3%

top 15.26%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mndpsingh287 File Manager Filemanagerpro File Manager

Timeline

PublishedOct 16

Description

The File Manager plugin for WordPress is vulnerable to authorization bypass due to a missing capability check in the /inc/root.php file in versions up to, and including, 3.0. This makes it possible for unauthenticated attackers to download arbitrary files from the server and upload arbitrary files that can be used for remote code execution.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶CVEListV5mndpsingh287/file_manager3.0

▶NVDfilemanagerpro/file_manager3.0

Patches

Patch: plugins.trac.wordpress.org ↗

🔴Vulnerability Details

CVEList

File Manager <= 3.0 - Unauthenticated Arbitrary File Upload/Download↗2024-10-16

▶

GHSA

GHSA-9f9w-6h4v-8h8v: The File Manager plugin for WordPress is vulnerable to authorization bypass due to a missing capability check in the /inc/root↗2024-10-16

▶

VulnCheck

File Manager plugin for WordPress /inc/root.php File Upload Vulnerability↗2018

▶