File Sharing & Download Manager – User Private Files

Vulnerabilities 7Slug user-private-filesLatest version 2.1.6WordPress.org →

Minimum safe version

2.1.4

Update to 2.1.4 or later to address 7 fixable vulnerabilities

Latest available2.1.6 ✓

Medium 6.4

2025-02-19< 2.1.4

CVE-2024-13799

Medium 6.5

2024-08-22< 2.1.1

CVE-2024-7848

Medium 4.3

2023-10-31< 2.0.5

CVE-2023-4836

Medium 4.8

2023-09-06< 2.0.4

WordPress User Private Files Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)

N/A

2022-08-06< 1.1.1

Frontend File Manager & Sharing – User Private Files <= 1.1.0 - Sensitive Information Disclosure

N/A

2022-08-06< 1.1.2

Frontend File Manager & Sharing – User Private Files <= 1.1.1 - Missing Authorization

High 8.8

2022-08-08< 1.1.3

CVE-2022-2356