N-Media Frontend File Manager vulnerabilities

CVE-2026-25005 [MEDIUM] CWE-639 CVE-2026-25005: Authorization Bypass Through User-Controlled Key vulnerability in N-Media Frontend File Manager nmed Authorization Bypass Through User-Controlled Key vulnerability in N-Media Frontend File Manager nmedia-user-file-uploader allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Frontend File Manager: from n/a through <= 23.5.

CVE-2025-64265 [MEDIUM] CWE-862 CVE-2025-64265: Missing Authorization vulnerability in N-Media Frontend File Manager nmedia-user-file-uploader allow Missing Authorization vulnerability in N-Media Frontend File Manager nmedia-user-file-uploader allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Frontend File Manager: from n/a through <= 23.2.

CVE-2025-57921 CWE-862 CVE-2025-57921: Missing Authorization vulnerability in N-Media Frontend File Manager nmedia-user-file-uploader allow Missing Authorization vulnerability in N-Media Frontend File Manager nmedia-user-file-uploader allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Frontend File Manager: from n/a through <= 23.3.

CVE-2025-27358 CWE-80 CVE-2025-27358: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in N-Med Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in N-Media Frontend File Manager nmedia-user-file-uploader allows Code Injection.This issue affects Frontend File Manager: from n/a through <= 23.6.

CVE-2024-25903 [HIGH] CWE-200 CVE-2024-25903: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in N-Media Frontend File Ma Exposure of Sensitive Information to an Unauthorized Actor vulnerability in N-Media Frontend File Manager.This issue affects Frontend File Manager: from n/a through 22.7.