The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Content Injection in versions up to, and including, 18.2. This is due to lacking authorization protections, checks against users editing other's posts, and lacking a security nonce, all on the wpfm_edit_file_title_desc AJAX action. This makes it possible for unauthenticated attackers to edit the content and title of every page on the site.
Advisories
Source ID Title
EUVD EUVD EUVD-2021-34196 The Frontend File Manager plugin for WordPress is vulnerable to Unauthenticated Content Injection in versions up to, and including, 18.2. This is due to lacking authorization protections, checks against users editing other's posts, and lacking a security nonce, all on the wpfm_edit_file_title_desc AJAX action. This makes it possible for unauthenticated attackers to edit the content and title of every page on the site.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Sat, 28 Dec 2024 01:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2024-12-28T00:53:34.180Z

Reserved: 2023-06-06T13:11:08.915Z

Link: CVE-2021-4369

cve-icon Vulnrichment

Updated: 2024-08-03T17:23:10.726Z

cve-icon NVD

Status : Modified

Published: 2023-06-07T02:15:14.843

Modified: 2024-11-21T06:37:31.503

Link: CVE-2021-4369

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.