Ninjateam File Manager Pro – Filester

6 CVEs affecting Ninjateam File Manager Pro – Filester. Latest disclosed: 2025-08-13. Critical: 0, High: 4.

Top CVEs affecting Ninjateam File Manager Pro – Filester
CVESeverityScorePublishedSummary
CVE-2024-8066High7.52024-11-28The File Manager Pro – Filester plugin for WordPress is vulnerable to arbitrary file uploads due to missing validation in the 'fsConnector' function in all ver…
CVE-2024-7031High7.52024-08-03The File Manager Pro – Filester plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'njt_fs_saveSe…
CVE-2025-3234High7.22025-06-14The File Manager Pro – Filester plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and inc…
CVE-2024-9669High7.22024-11-28The File Manager Pro – Filester plugin for WordPress is vulnerable to Local JavaScript File Inclusion in all versions up to, and including, 1.8.5 via the 'fm_l…
CVE-2025-0818Medium6.52025-08-13Several WordPress plugins using elFinder versions 2.1.64 and prior are vulnerable to Directory Traversal in various versions. This makes it possible for unauth…
CVE-2024-12331Medium4.32024-12-19The File Manager Pro – Filester plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ajax_install_…