Vulnerability CVE-2022-3126
Published: 2022-10-17

Description:
The Frontend File Manager Plugin WordPress plugin before 21.4 does not have CSRF check when uploading files, which could allow attackers to make logged in users upload files on their behalf

Type:

CWE-352

 (Cross-Site Request Forgery (CSRF))

 References:
https://wpscan.com/vulnerability/7db363bf-7bef-4d47-9963-c30d6fdd2fb8
Copyright 2026, cxsecurity.com

 

Back to Top