CVE-2023-5105

Summary

The Frontend File Manager Plugin WordPress plugin before 22.6 has a vulnerability that allows an Editor+ user to bypass the file download logic and download files such as wp-config.php

Affected Software

VendorProductVersion RangeStatus
UnknownFrontend File Manager Plugin0 < 22.6affected

Weaknesses

  • CWE-200 Information Exposure

ADP Enrichment

CVE Program Container

Additional References

References