VYPR

Filemanager

by WordPress

CVEs (3)

  • CVE-2025-1725MedJun 3, 2025
    risk 0.42cvss 6.4epss 0.00

    The Bit File Manager – 100% Free & Open Source File Manager and Code Editor for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 6.7 due to insufficient input sanitization and output…

  • CVE-2018-7204HigMar 7, 2018
    risk 0.42cvss 7.5epss 0.03

    inc/logger.php in the Giribaz File Manager plugin before 5.0.2 for WordPress logged activity related to the plugin in /wp-content/uploads/file-manager/log.txt. If a user edits the wp-config.php file using this plugin, the wp-config.php contents get added to log.txt, which is not…

  • CVE-2008-0222Jan 10, 2008
    risk 0.04cvss epss 0.08

    Unrestricted file upload vulnerability in ajaxfilemanager.php in the Wp-FileManager 1.2 plugin for WordPress allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors.