Unrated severityNVD Advisory· Published Nov 1, 2024· Updated Apr 28, 2026
WordPress File Upload plugin <= 4.24.7 - Broken Access Control + CSRF vulnerability
CVE-2024-39639
Description
Broken Access Control vulnerability in Nickolas Bossinas WordPress File Upload allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WordPress File Upload: from n/a through 4.24.7.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=4.24.7
- Nickolas Bossinas/WordPress File Uploadv5Range: n/a
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.