Medium 4.3
2025-02-25< 4.25.3
CVE-2024-13494
Iptanus File Upload
Minimum safe version
4.25.3
Update to 4.25.3 or later to address 36 fixable vulnerabilities
Latest available5.1.7 ✓
Critical 9.8
2025-01-08< 4.25.0
CVE-2024-11613
High 7.5
2025-01-07< 4.24.14
WordPress File Upload <= 4.24.13 - Unauthenticated Path Traversal to Arbitrary File Read in wfu_file_downloader.php
Critical 9.8
2025-01-08< 4.24.14
CVE-2024-11635
Medium 4.3
2025-01-07< 4.25.0
CVE-2024-12719
Critical 9.8
2024-10-14< 4.24.12
WordPress WordPress File Upload Plugin <= 4.24.11 is vulnerable to Path Traversal
Medium 6.1
2024-08-16< 4.24.9
CVE-2024-7301
Medium 6.1
2024-08-07< 4.24.8
CVE-2024-6494
Medium 6.1
2024-08-06< 4.24.8
CVE-2024-6651
Low 3.5
2024-11-01< 4.24.8
CVE-2024-39639
Medium 4.3
2024-07-16< 4.24.8
CVE-2024-5852
N/A
< 4.24.1
Wordpress File Upload < 4.24.1 - Cross-Site Request Forgery
Low 3.5
2024-03-31< 2.4.4
CVE-2014-125110
Medium 5.4
2024-04-09< 4.24.6
CVE-2024-2847
N/A
2023-11-14< 4.24.1
Wordpress File Upload 4.24.0 - Cross-Site Request Forgery
Medium 5.4
2023-10-17< 4.23.3
WordPress File Uploader Plugin < 4.23.3 is vulnerable to Cross Site Scripting (XSS)
N/A
2023-09-14< 4.23.3
WordPress WordPress File Upload Plugin < 4.23.3 is vulnerable to Cross Site Scripting (XSS)
N/A
2023-09-12< 4.23.3
Wordpress File Upload <= 4.23.2 - Authenticated(Administrator+) Stored Cross-Site Scripting
N/A
< 3.9.0
WordPress File Upload <= 3.8.5 - Insufficient File Extension Blacklisting
Medium 4.9
2023-06-22< 4.19.2
WordPress File Uploader Plugin < 4.19.2 is vulnerable to Path Traversal
Medium 5.5
2023-06-09< 4.19.2
CVE-2023-2767
N/A
2016-06-23< 3.9.0
WordPress File Upload < 3.9.0 - Arbitrary File Upload
N/A
2022-05-15< 4.16.4
WordPress File Upload <= 4.16.3 - Cross-Site Scripting
N/A
2022-05-16< 4.16.4
WordPress WordPress File Upload plugin <= 4.16.3 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability
N/A
2015-10-29< 3.4.1
WordPress File Upload Plugin <= 3.4.0 - Unauthenticated File Upload
High 8.8
2022-03-28< 4.16.3
CVE-2021-24962
N/A
2014-08-12< 2.4.2
CVE-2014-5199
Medium 5.4
2018-04-03< 4.3.3
WordPress File Upload plugin <=4.3.2 - Security Issue in plugin shortcodes
Medium 6.1
2018-04-09< 4.3.4
WordPress File Upload plugin <=4.3.3 - Cross-Site Scripting (XSS) vulnerability
High 7.5
2019-08-22< 3.0.0
CVE-2015-9340
High 7.5
2019-08-22< 2.7.1
CVE-2015-9339
High 7.5
2019-08-22< 2.5.0
CVE-2015-9338
High 7.5
2019-08-22< 3.4.1
CVE-2015-9341
Critical 9.8
2020-03-13< 4.13.0
CVE-2020-10564
Medium 5.4
2022-03-07< 4.16.3
CVE-2021-24961
Medium 5.4
2022-03-07< 4.16.3
CVE-2021-24960