Mitchell Bennis Simple File List vulnerabilities

6 known vulnerabilities affecting mitchell_bennis/simple_file_list.

Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2UNKNOWN2

Vulnerabilities

Page 1 of 1
CVE-2026-24953MEDIUMCVSS 6.5≤ 6.1.152026-02-20
CVE-2026-24953 [MEDIUM] CWE-22 CVE-2026-24953: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mitc Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mitchell Bennis Simple File List simple-file-list allows Path Traversal.This issue affects Simple File List: from n/a through <= 6.1.15.
cvelistv5nvd
CVE-2025-68591HIGHCVSS 8.1≤ 6.1.182025-12-24
CVE-2025-68591 [HIGH] CWE-862 CVE-2025-68591: Missing Authorization vulnerability in Mitchell Bennis Simple File List simple-file-list allows Expl Missing Authorization vulnerability in Mitchell Bennis Simple File List simple-file-list allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple File List: from n/a through <= 6.1.18.
cvelistv5nvd
CVE-2025-54021UNKNOWN≤ 6.1.142025-08-20
CVE-2025-54021 CWE-22 CVE-2025-54021: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mitc Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mitchell Bennis Simple File List simple-file-list allows Path Traversal.This issue affects Simple File List: from n/a through <= 6.1.14.
cvelistv5nvd
CVE-2025-47450UNKNOWN≤ 6.1.132025-05-07
CVE-2025-47450 CWE-862 CVE-2025-47450: Missing Authorization vulnerability in Mitchell Bennis Simple File List simple-file-list allows Expl Missing Authorization vulnerability in Mitchell Bennis Simple File List simple-file-list allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple File List: from n/a through <= 6.1.13.
cvelistv5nvd
CVE-2023-44227HIGHCVSS 7.5≥ n/a, ≤ 6.1.92024-04-17
CVE-2023-44227 [HIGH] CWE-862 CVE-2023-44227: Missing Authorization vulnerability in Mitchell Bennis Simple File List.This issue affects Simple Fi Missing Authorization vulnerability in Mitchell Bennis Simple File List.This issue affects Simple File List: from n/a through 6.1.9.
cvelistv5nvd
CVE-2023-39924MEDIUMCVSS 4.8≥ n/a, ≤ 6.1.92023-10-25
CVE-2023-39924 [MEDIUM] CWE-79 CVE-2023-39924: Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Mitchell Bennis Simple File List p Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Mitchell Bennis Simple File List plugin <= 6.1.9 versions.
cvelistv5nvd