Vulnerabilities (CVE)

Filtered by vendor Change Uploaded File Permissions Project Subscribe
Filtered by product Change Uploaded File Permissions
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-1788 1 Change Uploaded File Permissions Project 1 Change Uploaded File Permissions 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
Due to missing checks the Change Uploaded File Permissions WordPress plugin through 4.0.0 is vulnerable to CSRF attacks. This can be used to change the file and folder permissions of any folder. This could be problematic when specific files like ini files are made readable for everyone due to this.