Advanced File Manager Shortcodes

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:advanced_file_manager:advanced_file_manager_shortcodes:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorAdvanced File Manager (d1e3f8ed-45be-5607-b1e7-32833cd7fec1)
ProductAdvanced File Manager Shortcodes (376ea845-60fd-5414-afa8-c23252b1be95)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-7062 vulnerable 2026-06-08 06:21:56.885250 Advanced File Manager Shortcodes <= 2.4 - Authenticated (Contributor+) Directory Traversal
HIGH (8.8)
The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.4. This makes it possible for attackers with contributor access or higher to read the contents of arbitrary files on the server, which can contain sensitive information.
Published: 2024-07-10T02:02:46.771Z
Updated: 2026-04-08T17:05:55.482Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-7061 vulnerable 2026-06-08 06:21:56.884856 Advanced File Manager Shortcode <= 2.5.3 - Authenticated (Contributor+) Arbitrary File Upload
HIGH (8.8)
The Advanced File Manager Shortcodes plugin for WordPress is vulnerable to arbitrary file uploads in all versions up to, and including, 2.5.3. This makes it possible for authenticated attackers with contributor access or above to upload arbitrary files on the affected site's server which may make remote code execution possible.
Published: 2024-07-10T02:02:41.083Z
Updated: 2026-04-08T16:42:35.607Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.