Log out
Get PRO

Latest

Input validation vulnerability in Shared Files – Frontend File Upload Form & Secure File Sharing 1.7.42

  • Severity: high-risk
  • Status: Fixed
  • Publication: January 30, 2025

The Shared Files plugin for WordPress, which allows users to upload and share files securely, has a security vulnerability. This means that hackers can insert malicious code into the files, which will then run whenever someone tries to access them. This issue affects all versions of the plugin up to 1.7.42 and can be exploited by anyone, even without an account. However, it only affects websites that use Apache as their server and have not changed the default settings for handling dfxp files.

Detected in:

File Upload & Download Manager – Shared Files fixed vulnerable versions:
Shared Files – Frontend File Upload Form & Secure File Sharing fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.