Description
Unauthenticated Arbitrary File Download in WP Media folder Addon <= 4.0.1 versions.
Published: 2026-06-17
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The WP Media folder Addon plugin for WordPress allows an attacker to download any file on the server when the plugin version is 4.0.1 or older. This flaw is an unauthenticated arbitrary file download vulnerability (CWE‑22). The attacker can target sensitive files such as configuration files, credentials or private data, leading to confidentiality breaches.

Affected Systems

The vulnerability affects installations of Joomunited's WP Media folder Addon plugin up to version 4.0.1. Users running these older plugin versions on any WordPress site are susceptible, regardless of network exposure.

Risk and Exploitability

The CVSS score of 7.5 reflects a high severity. The EPSS score is not available, so no current exploitation probability can be assigned, and the vulnerability is not listed in CISA's KEV catalog. The attack vector is likely via a direct HTTP request to the plugin, which does not require authentication. Since the flaw allows unrestricted file access, it poses a significant threat if not patched.

Generated by OpenCVE AI on June 18, 2026 at 14:12 UTC.

Remediation

Vendor Solution

Update the WordPress WP Media folder Addon Plugin to the latest available version (at least 4.0.2).


OpenCVE Recommended Actions

  • Upgrade the WP Media folder Addon Plugin to version 4.0.2 or later.
  • If an upgrade cannot be performed immediately, disable the plugin to block the download path.
  • Deploy a Web Application Firewall rule to block requests targeting the plugin's file download endpoint.

Generated by OpenCVE AI on June 18, 2026 at 14:12 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 07:45:00 +0000

Type Values Removed Values Added
First Time appeared Joomunited
Joomunited wp Media Folder
Wordpress
Wordpress wordpress
Vendors & Products Joomunited
Joomunited wp Media Folder
Wordpress
Wordpress wordpress

Thu, 18 Jun 2026 04:45:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 17 Jun 2026 11:15:00 +0000

Type Values Removed Values Added
Description Unauthenticated Arbitrary File Download in WP Media folder Addon <= 4.0.1 versions.
Title WordPress WP Media folder Addon plugin <= 4.0.1 - Arbitrary File Download vulnerability
Weaknesses CWE-22
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}


Subscriptions

Joomunited Wp Media Folder
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published:

Updated: 2026-06-17T15:36:39.634Z

Reserved: 2026-05-27T10:28:56.262Z

Link: CVE-2026-9690

cve-icon Vulnrichment

Updated: 2026-06-17T15:36:33.396Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-26T07:30:05Z

Weaknesses
  • CWE-22

    Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')