[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fEs4toNWlGxwpv5jih7Sp6RjDuK1ePaQlL7ns4DL178w":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2024-25903","frontend-file-manager-sensitive-information-exposure-via-user-uploads","Frontend File Manager \u003C= 22.7 - Sensitive Information Exposure via user uploads","The Frontend File Manager Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 22.7 via the user upload functionality. This makes it possible for unauthenticated attackers to access user-uploaded files.","nmedia-user-file-uploader",null,"\u003C=22.7","22.8","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:L\u002FI:N\u002FA:N","Exposure of Sensitive Information to an Unauthorized Actor","2024-02-12 00:00:00","2024-02-14 20:43:50",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fbbade634-cd81-41c0-8976-f5cb251da3f2?source=api-prod",3]