WordPress File Upload

Plugin

Set alert

Changelog

Claim

VDP

Developer

Nickolas Bossinas

Current version

4.24.12

Installations

20,000

Last updated

4 weeks ago

Vulnerability history

0 present

15 patched

Unauthenticated Path Traversal to Arbitrary File Read and Deletion in wfu_file_downloader.php vulnerability <= 4.24.11

9.8

14 October, 2024

Unauthenticated Stored CrossSite Scripting via SVG File Upload vulnerability <= 4.24.8

7.1

16 August, 2024

Unauthenticated Stored XSS vulnerability < 4.24.8

7.1

7 August, 2024

Reflected XSS vulnerability < 4.24.8

7.1

6 August, 2024

Broken Access Control + CSRF vulnerability <= 4.24.7

4.3

1 August, 2024

WordPress File Upload

Developer

Current version

Installations

Last updated

Vulnerability history

Protection

Solutions

Bug bounty

Resources

Patchstack

Protection

Solutions

Bug bounty

Resources

Patchstack

WordPress File Upload

Developer

Current version

Installations

Last updated

Vulnerability history

Protection

Solutions

Bug bounty

Resources

Patchstack

Protection

Solutions

Bug bounty

Resources

Patchstack

Let us know if we have missed a vulnerability reported elsewhere

reCAPTCHA's verification failed!

Thank you for contributing!