cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-9546,https://securityvulnerability.io/vulnerability/CVE-2024-9546,Full Path Disclosure Vulnerability Affects WPIDE File Manager & Code Editor,"The File Manager & Code Editor plugin, developed by WPIDE for WordPress, has a vulnerability that allows full path disclosure in all versions up to 3.4.9. This issue arises from the plugin's use of the PHP-Parser library, which inadvertently reveals execution results related to parsing commands. Although the information obtained through this vulnerability does not pose an immediate risk on its own, it can assist malicious actors in exploiting additional vulnerabilities within the web application. Website administrators should promptly assess their versions of the plugin and apply necessary updates or mitigations to safeguard their systems against potential attacks.",Wordpress,WPide – File Manager & Code Editor,5.3,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,2024-10-15T00:15:00.000Z,0
CVE-2022-40217,https://securityvulnerability.io/vulnerability/CVE-2022-40217,WordPress WPide plugin <= 2.6 - Authenticated Arbitrary File Edit/Upload vulnerability,Authenticated (admin+) Arbitrary File Edit/Upload vulnerability in XplodedThemes WPide plugin <= 2.6 at WordPress.,Wordpress,WPide – File Manager & Code Editor (WordPress Plugin),6.5,MEDIUM,0.0009500000160187483,false,,false,false,false,,false,false,2022-09-21T20:15:00.000Z,0
CVE-2022-2261,https://securityvulnerability.io/vulnerability/CVE-2022-2261,WPide < 3.0 - Admin+ Local File Inclusion,"The WPIDE WordPress plugin before 3.0 does not sanitize and validate the filename parameter before using it in a require statement in the admin dashboard, leading to a Local File Inclusion issue.",Wordpress,WPide – File Manager & Code Editor,7.2,HIGH,0.0010300000431016088,false,,false,false,false,,false,false,2022-08-29T17:15:35.000Z,0
CVE-2022-35235,https://securityvulnerability.io/vulnerability/CVE-2022-35235,WordPress WPide plugin <= 2.6 - Authenticated Arbitrary File Read vulnerability,Authenticated (admin+) Arbitrary File Read vulnerability in XplodedThemes WPide plugin <= 2.6 at WordPress.,Wordpress,WPide – File Manager & Code Editor (WordPress Plugin),4.9,MEDIUM,0.0007099999929778278,false,,false,false,false,,false,false,2022-08-23T16:15:00.000Z,0