CVE-2021-4356 — Missing Authorization in Frontend File Manager Plugin

CWE-862 — Missing Authorization CWE-401 — Missing Release of Memory after Effective Lifetime5 documents5 sources

Severity

9.8CRITICALNVD

CNA9.0

EPSS

0.7%

top 27.01%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nmedia Frontend File Manager Plugin Najeebmedia Frontend File Manager Plugin

Timeline

PublishedJun 7

Latest updateJun 18

Description

The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Download in versions up to, and including, 18.2. This is due to lacking authentication protections, capability checks, and sanitization, all on the wpfm_file_meta_update AJAX action. This makes it possible for unauthenticated attackers to download arbitrary files on the site, potentially leading to site takeover.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶CVEListV5nmedia/frontend_file_manager_plugin< 18.3

▶NVDnajeebmedia/frontend_file_manager_plugin18.2

Patches

Patch: plugins.trac.wordpress.org ↗Patch: plugins.trac.wordpress.org ↗

🔴Vulnerability Details

CVEList

Frontend File Manager <= 18.2 - Unauthenticated Arbitrary File Download↗2023-06-07

▶

GHSA

GHSA-538r-g5r4-2c2w: The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Download in versions up to, and including, 18↗2023-06-07

▶

📋Vendor Advisories

Red Hat

kernel: net: genl: fix error path memory leak in policy dumping↗2025-06-18

▶

💬Community

Bugzilla

CVE-2021-47080 kernel: RDMA/core: Prevent divide-by-zero error triggered by the user↗2024-03-03

▶