ThreatPress

WordPress Vulnerabilities Database

Back

WordPress File Manager plugin <=5.0.0 - Information Disclosure vulnerability

Product
File Manager
Description
Information Disclosure vulnerability found in WordPress File Manager plugin (versions <=5.0.0).
Solution
Update the WordPress File Manager plugin to the latest available version (at least 5.0.2).
Classification
Type Information Disclosure
OWASP Top 10 A6: Sensitive Data Exposure
References
Plugin changelog
CVE
Name CVE-2018-7204
Versions
Affected In <=5.0.0
Fixed In 5.0.2
Disclosure date
2018-03-02
Submitter
ThreatPress